Re: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00

Brian Campbell <bcampbell@pingidentity.com> Wed, 19 July 2017 17:16 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B23B7131A55 for <unbearable@ietfa.amsl.com>; Wed, 19 Jul 2017 10:16:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9sR2FCTJoZYm for <unbearable@ietfa.amsl.com>; Wed, 19 Jul 2017 10:16:04 -0700 (PDT)
Received: from mail-pg0-x234.google.com (mail-pg0-x234.google.com [IPv6:2607:f8b0:400e:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6D02131474 for <unbearable@ietf.org>; Wed, 19 Jul 2017 10:16:04 -0700 (PDT)
Received: by mail-pg0-x234.google.com with SMTP id s4so2870535pgr.5 for <unbearable@ietf.org>; Wed, 19 Jul 2017 10:16:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=gcC/KmsPLyIyueM85A0fucKq+zhiJUUNfcAJ1eVePgw=; b=WHSBIVIS+fs2lIEushzXCwjKOqDXMBk+3KjfArzLC1BQBOce4R17xlCmv9Q4Ov/XLw oIycK1r4Xe+bpRURut4d5DxdnuJmQQW/CMD48O8fZGNIR2MHpigCrKFxy2YZUyICknaU RI/6/zgewMe6K9dm5mK6cJ8Azu3Bq2212gBB0=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=gcC/KmsPLyIyueM85A0fucKq+zhiJUUNfcAJ1eVePgw=; b=UwUt6pcx42wOXg79Ja1VJeUdcMOCVi4JBcTE6AyoatDWJx+Q3XL4LZTJuASGrLxNNm 4z7uQhxxVZRMfrXbsY6uGAGRgf2WndwzvEvsak0nIhmfrdK7v9sOonx1phL9RmTkP5s3 OLckj3LeZWV9w0Y/yErubPgO4mwoxDuadBdAH4QdVEBpb30Mywq0G5305HV7tvakci+Z PEn90xQcYYnYoBZgEuuL2mI2wVJcy5EAKRl8tyVM3atxU/iCE8CQ8D4vO2z0F+NfbIl7 xtehpzbSUUNuSn7MhVP/V+DEjtUzkDmhBvB/XWzDPJN2cAfi7ehxEYNmM8yFaBW5xTUk 5Z+Q==
X-Gm-Message-State: AIVw1111twHNANsumtj0wwT+LcyGdLFKpmxftVcvYuP6c23oHYm6Wqg7 Tu2vdfwAvDVo6S5oY2jwtuMRPww+ANj+AJmMwIpSPH2BBQE7qINuCiKZyuTRgcz+gW5Ixua6HUU DiG1CLUwINO4=
X-Received: by 10.84.231.15 with SMTP id f15mr872007plk.253.1500484564038; Wed, 19 Jul 2017 10:16:04 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.145.87 with HTTP; Wed, 19 Jul 2017 10:15:33 -0700 (PDT)
In-Reply-To: <DM5PR21MB0284C327BDC667EE11EC722DA6A00@DM5PR21MB0284.namprd21.prod.outlook.com>
References: <853ba12d-5859-1545-611d-74f0b1fbf533@sunet.se> <DM5PR21MB0284C327BDC667EE11EC722DA6A00@DM5PR21MB0284.namprd21.prod.outlook.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Wed, 19 Jul 2017 19:15:33 +0200
Message-ID: <CA+k3eCQqyQ5WUphCifS-MZhPMQt-ejGk4HOa1+4SpT6v7Ki7ng@mail.gmail.com>
To: Anthony Nadalin <tonynad@microsoft.com>
Cc: Leif Johansson <leifj@sunet.se>, IETF Tokbind WG <unbearable@ietf.org>
Content-Type: multipart/alternative; boundary="f403043607d86e5a080554aec9fa"
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/EwThJymmyF1-nXmDa5cWWojyJY8>
Subject: Re: [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Jul 2017 17:16:13 -0000

 The intent of the draft is to help facilitate interoperability between
independently developed and/or deployed components. And there is value in
standardization for that. But of course conformance to the draft isn't
required in cases, like perhaps those that you mention where everything is
within your own infrastructure, where that kind of interoperability isn't
important.

On Mon, Jul 17, 2017 at 10:35 PM, Anthony Nadalin <tonynad@microsoft.com>
wrote:

> So I'm not sure of the value of this as we and the their companies have
> already implemented solutions that are different than what is being
> proposed. This also does not work for a lot of our use cases where there is
> an untrusted proxy. Most of our cases are also within our own
> infrastructure so no question the need for standardization.
>
> ------------------------------
> *From:* Unbearable <unbearable-bounces@ietf.org> on behalf of Leif
> Johansson <leifj@sunet.se>
> *Sent:* Monday, July 17, 2017 5:50:20 PM
> *To:* IETF Tokbind WG
> *Subject:* [Unbearable] WG adoption of draft-campbell-tokbind-ttrp-00
>
>
> In the f2f meeting in Prague there was clear consensus to adopt
> draft-campbell-tokbind-ttrp-00 as draft-ietf-tokbind-ttrp-00
> making this a WG document.
>
> If anyone on the list disagrees, now is the time to speak up.
>
>         Cheers Leif & John
>
> _______________________________________________
> Unbearable mailing list
> Unbearable@ietf.org
> https://na01.safelinks.protection.outlook.com/?url=
> https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Funbearable&data=02%7C01%
> 7Ctonynad%40microsoft.com%7C06e4b840a7a94372b5e008d4cd2b8f26%
> 7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636359034357583877&sdata=
> hW8BlMQm1Sf%2BjDXeAQ9%2BeHIxXMroROFSuegdWpdX8DA%3D&reserved=0
>
> _______________________________________________
> Unbearable mailing list
> Unbearable@ietf.org
> https://www.ietf.org/mailman/listinfo/unbearable
>
>

-- 
*CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you.*