[Txauth] Possible Use Case for GNAP
David Pyke <david.pyke@readycomputing.com> Thu, 02 July 2020 15:29 UTC
Return-Path: <david.pyke@readycomputing.com>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 31F813A095F for <txauth@ietfa.amsl.com>; Thu, 2 Jul 2020 08:29:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.088
X-Spam-Level:
X-Spam-Status: No, score=-2.088 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=readycomputing.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fuRspzUtIAep for <txauth@ietfa.amsl.com>; Thu, 2 Jul 2020 08:29:14 -0700 (PDT)
Received: from mail-qk1-x72f.google.com (mail-qk1-x72f.google.com [IPv6:2607:f8b0:4864:20::72f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA6213A0954 for <txauth@ietf.org>; Thu, 2 Jul 2020 08:29:13 -0700 (PDT)
Received: by mail-qk1-x72f.google.com with SMTP id b185so15394412qkg.1 for <txauth@ietf.org>; Thu, 02 Jul 2020 08:29:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=readycomputing.com; s=google; h=from:to:subject:message-id:date:user-agent:mime-version :content-language; bh=tELw5DiuYL+fJJUUoM6CYG4KnF0gb9xxfBgzVZlWnpo=; b=k5bHeSbej5OcNcMkTyETGvRqN05X9TAsASi0gNpZEfmlFbIwuMh903B2rLgdKmFgi5 Xie5vcQdsvKvrTKIJk0XwKY87ZtYyxOr0mHvwoeE2akDPR1q1wlJNuVdZG2r5pGD2HOE BufdgFT7Z4/V2jCuoT/ddZBPf2No1i3huX///q5nPG+8anQxr2d54O4PNM9D/izmjzQL 9lPNlw/mz9Soa6oqRjkH49ekUGEAnpPQAVZ+yRxcLJjRA8ChsQOYbd1U2JUd/baz2uj/ YGB9kM2Q+WwJttNtO096G8ueExtZgO6wcSPb4MJR/eI62gouBWwSjOhLvvi9tL96qGKl rXsg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:message-id:date:user-agent :mime-version:content-language; bh=tELw5DiuYL+fJJUUoM6CYG4KnF0gb9xxfBgzVZlWnpo=; b=kKO/XdWn64s24BVV53zH8IyVg6o1gNIQ7BKS1skZcyRPzq9/NItNwAfN3Ei3WTbuxM +jnOW/q8WJxyGIjV5cZaqrQ1lMca7sl+6trx6IdyHz8W/EdhW2bUBBcU1iMEEeS4k8vc hwv+0GjTDNK1/rHvIyl5oAjAPkg0Ktl5JXzF91+gIQvXQsC9IwLwy/IH9WeV5F7laUKA Nt6OpP2RaKXJZNcEapslySPMsnDJe9FXd4gfeJhvovGufumwG+0sOLUbp3L1GiDKckQf SVUBlGGtdTN/hD21Ju3ROLNqJlaY6u05fjTmx4cVcX7uoMdZDCbPbsTvjFF56ajF2LH+ pvSg==
X-Gm-Message-State: AOAM530APMG9wP5C7IQW8HtZGGzUQtGus6VR7FskAuP2NW+hUn0X6j7Q foxiTXoMcxlRX+iA4CnDQliSp85QqD9808FHvr5JtfaYQIWIGNyfeoaCKljapeJDfINAjpiQ0St 4OpB9z+TtFvA39iNoMAxn/I3OAezdwXEOv1mfVB+mk6inrpU0q5DV1qlairBWnk+x+C9p81ifmg ==
X-Google-Smtp-Source: ABdhPJzdBCLWj0qi5Mw6IGrDItY6030sByF/aPICh/Iuc7uPnQ4kf/pGvR6nlL9OPZ0GIv+tNrm1Xw==
X-Received: by 2002:a05:620a:1273:: with SMTP id b19mr30447578qkl.10.1593703752486; Thu, 02 Jul 2020 08:29:12 -0700 (PDT)
Received: from ?IPv6:2607:fea8:aa20:59d:5d63:582a:1f1:b908? ([2607:fea8:aa20:59d:5d63:582a:1f1:b908]) by smtp.googlemail.com with ESMTPSA id m7sm8644603qti.6.2020.07.02.08.29.11 for <txauth@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 02 Jul 2020 08:29:11 -0700 (PDT)
From: David Pyke <david.pyke@readycomputing.com>
X-Google-Original-From: David Pyke <David.Pyke@readycomputing.com>
To: txauth@ietf.org
Message-ID: <eb099963-98c3-2629-ef95-1b1aae2359b9@readycomputing.com>
Date: Thu, 02 Jul 2020 11:29:11 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.8.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------99F1EA6E925260DDB0E062E6"
Content-Language: en-CA
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/I258uD8pUkNw8aB6C4BDjcWFU0o>
Subject: [Txauth] Possible Use Case for GNAP
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jul 2020 15:29:24 -0000
I am working on a Healthcare IT project that requires multi-hop transmission of REST based (FHIR: fhir.hl7.org) resources. The established protocol uses OAuth2 which doens't lend itself to multi-hop relay. I saw a presentation on XYZ/GNAP and thought it might be early enough to get on the train to consider how it might address that structure. The system I'm working on is from the US Office of the National Coordinator for Healthcare IT (ONC) called TEFCA. At minimum there would be 4 hops, at maximum, could be 8-10 and no bypassing of the network can be done. As I said, OAuth2 doesn't handle that without significant issues. If this is not a use case that can be considered, please accept my apologies. Thanks Dave Pyke -- *David Pyke* Manager, Strategic Consulting ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Logo <http://www.readycomputing.com/> LinkedIn icon <https://www.linkedin.com/company/ready-computing> Twitter icon <https://twitter.com/ready_computing?lang=en> Youtbue icon <https://www.youtube.com/channel/UCtA7SflMXNTkY0MWL-79LDQ> Office: +1 212 877 3307 x5001 _david.pyke@readycomputing.com <mailto:david.pyke@readycomputing.com>_ _www.readycomputing.com <http://www.readycomputing.com/>_ 150 Beekman Street, Floor 3, New York, NY 10038 The information in this e-mail communication together with any attachments is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. If you are not the intended recipient of this communication, please notify us immediately. Any views expressed in this communication are those of the sender, unless otherwise specifically stated. Ready Computing does not represent, warrant or guarantee that the integrity of this communication has been maintained or the communication is free of errors, virus or interference. -- This is not a secure transmission. The information contained in this transmission is highly prohibited from containing privileged and confidential information, including patient information protected by federal and state privacy laws. It is intended only for the use of the person(s) named above. If you are not the intended recipient, you are hereby notified that any review, dissemination, distribution, or duplication of this communication is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message.
- [Txauth] Possible Use Case for GNAP David Pyke
- Re: [Txauth] Possible Use Case for GNAP Tom Jones
- Re: [Txauth] Possible Use Case for GNAP David Pyke
- Re: [Txauth] Possible Use Case for GNAP Tom Jones
- Re: [Txauth] Possible Use Case for GNAP David Pyke
- Re: [Txauth] Possible Use Case for GNAP Tom Jones
- Re: [Txauth] Possible Use Case for GNAP Justin Richer
- Re: [Txauth] Possible Use Case for GNAP David Pyke
- Re: [Txauth] Possible Use Case for GNAP Steinar Noem
- Re: [Txauth] Possible Use Case for GNAP Justin Richer