IETF Logo Mail Archive

Re: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00

Anthony Nadalin <tonynad@microsoft.com> Thu, 20 July 2017 08:03 UTC

Return-Path: <tonynad@microsoft.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85C95129B7F for <unbearable@ietfa.amsl.com>; Thu, 20 Jul 2017 01:03:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.812
X-Spam-Level:
X-Spam-Status: No, score=-2.812 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IX6cbV1lx71m for <unbearable@ietfa.amsl.com>; Thu, 20 Jul 2017 01:03:45 -0700 (PDT)
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (mail-sn1nam02on0126.outbound.protection.outlook.com [104.47.36.126]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB566131A7E for <unbearable@ietf.org>; Thu, 20 Jul 2017 01:03:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=1VjiQjQo0Lb2t44QPXNBgbge1S5tkYHRf+Q4P20++Qg=; b=KyoyeBouWxqZ7hmSYDxOZBq2fnwFzhm8PlZrY0HjcUcoC/AK/o9HQuTmbnuWPvC3icgTz/aB1BSwrIKwrLJF6UXcg6G+RJqKd/34dJXzzfsXKOaUO1D6pvC6t5IsoebOVddaI876uPjc6h+5IODjJIOEsbPTxbAxSgLAOjCcW0w=
Received: from MWHPR21MB0286.namprd21.prod.outlook.com (10.173.53.16) by MWHPR21MB0159.namprd21.prod.outlook.com (10.173.52.17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.2; Thu, 20 Jul 2017 08:03:32 +0000
Received: from MWHPR21MB0286.namprd21.prod.outlook.com ([10.173.53.16]) by MWHPR21MB0286.namprd21.prod.outlook.com ([10.173.53.16]) with mapi id 15.01.1282.008; Thu, 20 Jul 2017 08:03:32 +0000
From: Anthony Nadalin <tonynad@microsoft.com>
To: Brian Campbell <bcampbell@pingidentity.com>
CC: Leif Johansson <leifj@sunet.se>, IETF Tokbind WG <unbearable@ietf.org>
Thread-Topic: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00
Thread-Index: AQHS/xRvpKAPfchK1kW7724yuY/xe6JYeitcgALs7oCAAM/csA==
Date: Thu, 20 Jul 2017 08:03:31 +0000
Message-ID: <MWHPR21MB0286C88911267D9D68728500A6A70@MWHPR21MB0286.namprd21.prod.outlook.com>
References: <853ba12d-5859-1545-611d-74f0b1fbf533@sunet.se> <DM5PR21MB0284C327BDC667EE11EC722DA6A00@DM5PR21MB0284.namprd21.prod.outlook.com> <CA+k3eCQqyQ5WUphCifS-MZhPMQt-ejGk4HOa1+4SpT6v7Ki7ng@mail.gmail.com>
In-Reply-To: <CA+k3eCQqyQ5WUphCifS-MZhPMQt-ejGk4HOa1+4SpT6v7Ki7ng@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Ref=https://api.informationprotection.azure.com/api/72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Owner=tonynad@microsoft.com; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2017-07-20T01:03:29.1160251-07:00; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=General; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Application=Microsoft Azure Information Protection; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Extended_MSFT_Method=Automatic; Sensitivity=General
authentication-results: pingidentity.com; dkim=none (message not signed) header.d=none;pingidentity.com; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [62.168.35.69]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; MWHPR21MB0159; 7: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
x-ms-office365-filtering-correlation-id: 934bcfd9-c85b-4b6f-3189-08d4cf45d075
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(48565401081)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:MWHPR21MB0159;
x-ms-traffictypediagnostic: MWHPR21MB0159:
x-exchange-antispam-report-test: UriScan:(151999592597050)(26388249023172)(236129657087228)(189930954265078)(48057245064654)(100405760836317)(148574349560750)(219752817060721)(21748063052155)(69029272430364);
x-microsoft-antispam-prvs: <MWHPR21MB0159E8B70A27C23F78A75325A6A70@MWHPR21MB0159.namprd21.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(61425038)(6040450)(601004)(2401047)(8121501046)(5005006)(2017060910075)(10201501046)(93006095)(93001095)(3002001)(100000703101)(100105400095)(6055026)(61426038)(61427038)(6041248)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123558100)(20161123560025)(20161123564025)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:MWHPR21MB0159; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:MWHPR21MB0159;
x-forefront-prvs: 0374433C81
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(979002)(39400400002)(39410400002)(39850400002)(39860400002)(39450400003)(39840400002)(36304003)(24454002)(377454003)(25786009)(478600001)(99286003)(6306002)(110136004)(54896002)(38730400002)(55016002)(236005)(54906002)(6246003)(53546010)(189998001)(6506006)(77096006)(7736002)(86612001)(86362001)(229853002)(7696004)(53936002)(10290500003)(66066001)(9686003)(3280700002)(2906002)(5890100001)(230783001)(4326008)(6916009)(2950100002)(19609705001)(10090500001)(966005)(74316002)(76176999)(6436002)(3660700001)(81166006)(8990500004)(5660300001)(54356999)(8936002)(790700001)(606006)(102836003)(2900100001)(8676002)(33656002)(14454004)(3846002)(6116002)(50986999)(5005710100001)(42262002)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR21MB0159; H:MWHPR21MB0286.namprd21.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_MWHPR21MB0286C88911267D9D68728500A6A70MWHPR21MB0286namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jul 2017 08:03:32.0460 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR21MB0159
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/CIfiu7eaxLxUrthNiAa90RBcxuY>
Subject: Re: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jul 2017 08:03:47 -0000

Maybe this should just be an Informational and not standards track

From: Brian Campbell [mailto:bcampbell@pingidentity.com]
Sent: Wednesday, July 19, 2017 10:16 AM
To: Anthony Nadalin <tonynad@microsoft.com>
Cc: Leif Johansson <leifj@sunet.se>; IETF Tokbind WG <unbearable@ietf.org>
Subject: Re: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00

The intent of the draft is to help facilitate interoperability between independently developed and/or deployed components. And there is value in standardization for that. But of course conformance to the draft isn't required in cases, like perhaps those that you mention where everything is within your own infrastructure, where that kind of interoperability isn't important.

On Mon, Jul 17, 2017 at 10:35 PM, Anthony Nadalin <tonynad@microsoft.com<mailto:tonynad@microsoft.com>> wrote:
So I'm not sure of the value of this as we and the their companies have already implemented solutions that are different than what is being proposed. This also does not work for a lot of our use cases where there is an untrusted proxy. Most of our cases are also within our own infrastructure so no question the need for standardization.

________________________________
From: Unbearable <unbearable-bounces@ietf.org<mailto:unbearable-bounces@ietf.org>> on behalf of Leif Johansson <leifj@sunet.se<mailto:leifj@sunet.se>>
Sent: Monday, July 17, 2017 5:50:20 PM
To: IETF Tokbind WG
Subject: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00


In the f2f meeting in Prague there was clear consensus to adopt
draft-campbell-tokbind-ttrp-00 as draft-ietf-tokbind-ttrp-00
making this a WG document.

If anyone on the list disagrees, now is the time to speak up.

        Cheers Leif & John

_______________________________________________
Unbearable mailing list
Unbearable@ietf.org<mailto:Unbearable@ietf.org>
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Funbearable&data=02%7C01%7Ctonynad%40microsoft.com%7C06e4b840a7a94372b5e008d4cd2b8f26%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636359034357583877&sdata=hW8BlMQm1Sf%2BjDXeAQ9%2BeHIxXMroROFSuegdWpdX8DA%3D&reserved=0

_______________________________________________
Unbearable mailing list
Unbearable@ietf.org<mailto:Unbearable@ietf.org>
https://www.ietf.org/mailman/listinfo/unbearable<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Funbearable&data=02%7C01%7Ctonynad%40microsoft.com%7Cb1355580db1045ba7b0f08d4cec9d6ff%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636360813668753933&sdata=B5U72oWWIP%2B5XDET3rFupu4Q5mvpQlOk6LmdPlDQM4M%3D&reserved=0>


CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.

v2.23.0 | Report a Bug | By Email