IETF Logo Mail Archive

Re: [Txauth] Use Case: Directed Tokens

Dick Hardt <dick.hardt@gmail.com> Sat, 04 July 2020 01:51 UTC

Return-Path: <dick.hardt@gmail.com>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0DD7C3A09AB for <txauth@ietfa.amsl.com>; Fri, 3 Jul 2020 18:51:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Aq1ljKgocUJL for <txauth@ietfa.amsl.com>; Fri, 3 Jul 2020 18:51:14 -0700 (PDT)
Received: from mail-lf1-x131.google.com (mail-lf1-x131.google.com [IPv6:2a00:1450:4864:20::131]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 406C53A0990 for <txauth@ietf.org>; Fri, 3 Jul 2020 18:51:14 -0700 (PDT)
Received: by mail-lf1-x131.google.com with SMTP id s16so14038937lfp.12 for <txauth@ietf.org>; Fri, 03 Jul 2020 18:51:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8ktxl46j13XLtYaLXmGULjMxR0cJLz/F6IXOc1+iP0E=; b=pVjj2plqZqvtu1PyGrvEIyasUUgSDf9P25UNsKnUwLwLPdMfM/HbM8yd7QYbdu+6PC Ov4/L13rMVET0OD9xDZBiYzpBvsPWYibsrgm6Ep7GIEDTc2G2ijM6BcpGxhcTa27x270 oNtxYEVjVWYMCNHGu7gZ3C+H2uZ7jadHs7zYzmwkI6z0Nh0gvM7XQpNhN9HP7bn6Y4pq OBvggz/tBijksfHnT6rWqYgVe/Gw1nCbz7pUNWDk0RQ4x7jlZ+dZUovBM5RE8GeoNunu yM49Pg4VlrVVASfYHs3CeSC+tI4JNCjIJdaG/Uz+ZzDB+wd5vP7uhWxhDYDyrBwIPa9T SIUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8ktxl46j13XLtYaLXmGULjMxR0cJLz/F6IXOc1+iP0E=; b=Z3QqaFyKiYTBH09ZSzkkXr3UAMlLwZvfPZtXBCoxlou/HD7WlmN2amS5AESAzGb+p3 0eSFHkuV7tvSc0m/UUKBfg+NSr8DcP++BEo76P9L4CNi1JwYvwWs1fm4WmmbKqSc+MtX m5GoQHt0JaUmhefB/uPyW8tUYJ7cVogzgR9iByULbsOVIALlwc6asEQHjyMy/c9OfLCP xIUXITzaM2iohm/7w2dPRQvrR9LmggYV0mt9t9YYmWrdlIBlwIy/+btkgxvTyVdJtMkv prOkhQSBPHaEnsOuYbeTCJDzEZFBYrtHyQ8NvB8ShoEdmnLeB84l4oGpjjQ0kaYRVsYL 1ocQ==
X-Gm-Message-State: AOAM532UwrpHLNmrUjJECP+uKM4/6sWsABPfpxe+LkzWwcEWyrSmKJ23 C3Im0my1ELoefnB2ZSvoNpxzHkR7ihmu8A6eBMc=
X-Google-Smtp-Source: ABdhPJxv6zdZ9biFT8zL6jgqVE0zB6XKG9ZQNPvoP2JwVymBnDRHSHUwQYnBpFVvQNr9Uq3D+q9aKvZ4zSl1swupCF4=
X-Received: by 2002:a19:c8a:: with SMTP id 132mr23568208lfm.23.1593827472279; Fri, 03 Jul 2020 18:51:12 -0700 (PDT)
MIME-Version: 1.0
References: <4F145676-A126-4D35-8890-A0DDF891EA06@mit.edu> <32ae1a93-fc9d-cd15-798e-ec493482dd26@free.fr> <90F181EE-8E34-4486-BCFB-ADACE55A55CF@mit.edu> <dd8ef917-c63a-0070-810a-aecfd9aac0a0@free.fr> <CAJmmfSRMWRMQbfZ2ktaRRq1oVeZtXSRf0TGiCJmcLi1FJF6N+w@mail.gmail.com> <6CCD515B-BE87-452B-9034-777D90E110DD@mit.edu> <CAK2Cwb4RMRT-_AJerg6DbGJ08naO1=aHOD3r-RKaU0N5BVvDjw@mail.gmail.com> <3b49cf41-883c-66d9-ac92-b34301161eca@free.fr> <CAD9ie-sSA8EHXA_y4KErvbhWw243EM17C2kEm_T3hCZGqxNqjA@mail.gmail.com> <CAK2Cwb6Kadvv97D+yH4oD9qPwOwdpG72DjiApSFa4gzH5LyLyw@mail.gmail.com> <CAD9ie-scXK9HX4f0gfcSMbVinvwArrUpqPA0p+icymOxc5n2-w@mail.gmail.com> <88ca4d3c-4605-5220-279e-d1665cbc076d@free.fr>
In-Reply-To: <88ca4d3c-4605-5220-279e-d1665cbc076d@free.fr>
From: Dick Hardt <dick.hardt@gmail.com>
Date: Fri, 03 Jul 2020 18:50:36 -0700
Message-ID: <CAD9ie-vr=OETWfYXFgEGB0S6DVy7Lx9O7ghXPB-SDDNhc+ojmw@mail.gmail.com>
To: Denis <denis.ietf@free.fr>
Cc: Tom Jones <thomasclinganjones@gmail.com>, Justin Richer <jricher@mit.edu>, txauth@ietf.org, Tobias Looker <tobias.looker@mattr.global>
Content-Type: multipart/alternative; boundary="000000000000518ec505a993e008"
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/k8eGenXj_XBuvbuvv9BuQ0_qHEk>
Subject: Re: [Txauth] Use Case: Directed Tokens
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Jul 2020 01:51:16 -0000

While the scopes used in some implementations imply the RS, there is
nothing in OAuth 2.0 that requires the scope to imply the RS.

When you use your driver's license to prove your age at a liquor store, it
is unidirectional trust. The issuer likely has no relationship with the
audience.

I think you are contemplating claims rather than tokens if the driver's
license example is what you are contemplating.




On Fri, Jul 3, 2020 at 2:19 AM Denis <denis.ietf@free.fr> wrote:

> Hello  Dick,
>
> I agree it is not always true, sorry I did not make that clear.
>
> My statement is that OAuth 2.0 does not require the AS to have
> knowledge of the RS.
>
> As soon as the scope parameter is being used, then the AS has a prior
> knowledge of the RS.
> When the scope parameter is not used, then the client has no ability to
> modulate the attributes.
>
> Even when the AS has a no prior knowledge of the RS, when the access token
> is targeted to a given RS,
> then the AS has the knowledge of which RS is likely to be accessed by the
> client.
>
> While it may be interesting to list some of the limitations of OAuth 2.0,
> it is much more important
> to focus on the characteristics we would like to support with GNAP ...
> and to mention them in the charter.
>
> Denis
>
>
> On Thu, Jul 2, 2020 at 10:56 AM Tom Jones <thomasclinganjones@gmail.com>
> wrote:
>
>> Dick, the statement about the AS and RS is not always true. In
>> federations we are always concerned that information is not leaked outside
>> the approved parties and the AS messages will likely be encrypted for the
>> sole use of the RS.
>> Peace ..tom
>>
>>
>> On Thu, Jul 2, 2020 at 10:44 AM Dick Hardt <dick.hardt@gmail.com> wrote:
>>
>>> Apologies for the delayed response:
>>>
>>> On Fri, Jun 26, 2020 at 9:04 AM Denis <denis.ietf@free.fr> wrote:
>>>
>>>> The principle where a RS would only have relationships with one AS
>>>> would make the model non scalable.
>>>> It would prevent to get attributes from two different ASs,  for
>>>> example:
>>>> identity attributes from a bank and a master degree diploma from a
>>>> university.
>>>>
>>>
>>> Where do you see that the RS can have a relationship with only one AS?
>>>
>>>
>>>>
>>>> For privacy reasons, every AS should know as little as possible about
>>>> the interactions between a client and multiple RSs.
>>>> It is even possible that this goes as little as knowing *nothing at
>>>> all*.
>>>>
>>>
>>> OAuth 2.0 works this way now.
>>>
>>>
>>>>
>>>> The OAuth 2.0 assumption where the AS is in a position to know all the
>>>> interactions of a given user has with all the RSs
>>>> that an AS server has a relationship with should not be re-iterated.
>>>>
>>>
>>> I am still confused why you think the AS knows anything abou the
>>> interactions a given use has with all the RSs. The AS knows which clients
>>> the user is using, but does not need to have any knowledge of which RSs a
>>> client is accessing.
>>>
>>>
>>> The AS does not need to know anything about the RS. The RS clearly needs
>>> to trust the AS, as it is trusting the access granted by the AS to the
>>> client, but it is unidirectional trust between the RS and the AS.
>>>
>>> /Dick
>>>
>>
>

v2.23.0 | Report a Bug | By Email