[Unbearable] Fwd: I-D Action: draft-ietf-tokbind-ttrp-08.txt
Brian Campbell <bcampbell@pingidentity.com> Mon, 15 April 2019 16:47 UTC
Return-Path: <bcampbell@pingidentity.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AEEC01200D5 for <unbearable@ietfa.amsl.com>; Mon, 15 Apr 2019 09:47:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mEf_94nVk_rj for <unbearable@ietfa.amsl.com>; Mon, 15 Apr 2019 09:47:51 -0700 (PDT)
Received: from mail-io1-xd30.google.com (mail-io1-xd30.google.com [IPv6:2607:f8b0:4864:20::d30]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7769C12038A for <unbearable@ietf.org>; Mon, 15 Apr 2019 09:47:41 -0700 (PDT)
Received: by mail-io1-xd30.google.com with SMTP id v10so15126632iom.8 for <unbearable@ietf.org>; Mon, 15 Apr 2019 09:47:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=bFJTjaDxQvVMh+IStx/VBKEjDGV90eq8NhcYNFp2Lk4=; b=gGhJ20grPSE8yvMcN0G8fYgYM64h5edAQQHnyi649LLm8Q7j6jDx8SFVp9XS2fxOaG J62xLxnhfQn33rWXF2WN5QUvRSaRjL4DDDWllFy9PBPVKgVXl7htOmexkwiqDKV0WBA3 YBiTu37p3yYEJZzyRaEBSCVMlytrT8L+UtUSs=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=bFJTjaDxQvVMh+IStx/VBKEjDGV90eq8NhcYNFp2Lk4=; b=dtuhvetWkRarz54/dM7aiOP4qO1uYytAlYXPkG/6m+lhgQQyyDkYtVCNAIYzPi24jH NeFllKx5KLrL34pTOwaWePSnw2SsXq4+WBspAZ0f8Hmn1r+Tdy2TGhWBFRJMITO85JO0 TIExbqlKgQRtEPk483h1cTHomabB59fSyg4yZJVjC/ABXmGwJOItczWgyUa9rFXbYctG om0a7/Chho0ACrC+6JapNJ3/ltbgYlHP38OcEujlbO9G1AxQoBtOddJasx+bL9q9RFoV L5GlAadCWe5D7ZKrMHI7SnTXfUS5InkSZmbaeAb3Z3olEDm8xlcT4twssa+AfmXlC9aM sjMw==
X-Gm-Message-State: APjAAAWAL9SuNVgnl+5DEciw42dTd8+s0aFmN0naCVj4QJoYehsz6+MT wiTG7DrqPjD9s9POOeZrH0gm3/hcvbNntXjfd4Y9Agq+L4NJlpXCLSptqc7qbr+ptbcBgmI9KoI AVitUJrGniOm61M9PWSbylMHZKw==
X-Google-Smtp-Source: APXvYqwqaXXnWpVBDePANZM30ltzTFCl0Nzgh6rZyhwGBNrV9mO+FpEhLmS2cd8iid4jQx21lI5GZkw7603fidFoaAo=
X-Received: by 2002:a6b:7219:: with SMTP id n25mr39340655ioc.117.1555346860184; Mon, 15 Apr 2019 09:47:40 -0700 (PDT)
MIME-Version: 1.0
References: <155534643408.10858.14677222314436917046@ietfa.amsl.com>
In-Reply-To: <155534643408.10858.14677222314436917046@ietfa.amsl.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Mon, 15 Apr 2019 10:47:14 -0600
Message-ID: <CA+k3eCSM2pJLMaws1O-SoW-xRQ886b4oD1gu1SZbGKO_oF=2pA@mail.gmail.com>
To: IETF Tokbind WG <unbearable@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000001ab8ae058694691e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/6gZsRBEd3sWZBDk8MGXk-LF906g>
Subject: [Unbearable] Fwd: I-D Action: draft-ietf-tokbind-ttrp-08.txt
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Apr 2019 16:47:55 -0000
Just published -08 with no changes from -07 to avoid impending expiration while awaiting the shepherd writeup. ---------- Forwarded message --------- From: <internet-drafts@ietf.org> Date: Mon, Apr 15, 2019 at 10:40 AM Subject: [Unbearable] I-D Action: draft-ietf-tokbind-ttrp-08.txt To: <i-d-announce@ietf.org> Cc: <unbearable@ietf.org> A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Token Binding WG of the IETF. Title : HTTPS Token Binding with TLS Terminating Reverse Proxies Author : Brian Campbell Filename : draft-ietf-tokbind-ttrp-08.txt Pages : 14 Date : 2019-04-15 Abstract: This document defines HTTP header fields that enable a TLS terminating reverse proxy to convey information to a backend server about the validated Token Binding Message received from a client, which enables that backend server to bind, or verify the binding of, cookies and other security tokens to the client's Token Binding key. This facilitates the reverse proxy and backend server functioning together as though they are a single logical server side deployment of HTTPS Token Binding. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-tokbind-ttrp/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-tokbind-ttrp-08 https://datatracker.ietf.org/doc/html/draft-ietf-tokbind-ttrp-08 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-tokbind-ttrp-08 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ Unbearable mailing list Unbearable@ietf.org https://www.ietf.org/mailman/listinfo/unbearable -- _CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you._
- [Unbearable] I-D Action: draft-ietf-tokbind-ttrp-… internet-drafts
- [Unbearable] Fwd: I-D Action: draft-ietf-tokbind-… Brian Campbell