[Unbearable] IPR for HTTPS Token Binding with TLS Terminating Reverse Proxies

John Bradley <ve7jtb@ve7jtb.com> Thu, 08 November 2018 07:38 UTC

Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4E28128DFD for <unbearable@ietfa.amsl.com>; Wed, 7 Nov 2018 23:38:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ve7jtb-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O1EsyRLs8RBv for <unbearable@ietfa.amsl.com>; Wed, 7 Nov 2018 23:38:46 -0800 (PST)
Received: from mail-pg1-x535.google.com (mail-pg1-x535.google.com [IPv6:2607:f8b0:4864:20::535]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7803A126CB6 for <unbearable@ietf.org>; Wed, 7 Nov 2018 23:38:46 -0800 (PST)
Received: by mail-pg1-x535.google.com with SMTP id y4so8054061pgc.12 for <unbearable@ietf.org>; Wed, 07 Nov 2018 23:38:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ve7jtb-com.20150623.gappssmtp.com; s=20150623; h=from:to:subject:message-id:date:user-agent:mime-version :content-language; bh=4cla8NsjWGulVXfTvhGoQuRMh5CDfPXIgULKn88z8l0=; b=jghAxz8KiyxFhWscTp1NZxxO+OdVLVkRKiTKaF3B4Rcy3lH5MsyFrSVimwcv9ly25u JH4alxpojUGJEHuRAFbQajONNqlpMyeJFsNVzwtae3pCjd83GUboNRbG/3j8wjnOr6Xk Eed3BtkbwqPF7aybl7t3qfoaelc23PTeS4whkBW7uttQ56ML/7R5PQExHYcC+g3LMgl2 uKwflY6F5r4i2i/NgNNoQ7rI01F6YuvgMXOsNIQe9OvwFR63XtlFjznrpIBGMxhT9HSf tcT4vbgErQnF7M7/IrX/ltDAPQzRuLy981HOkXLpeMTYN4rLHf20qojAHW1heYL1jReW zxRg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:message-id:date:user-agent :mime-version:content-language; bh=4cla8NsjWGulVXfTvhGoQuRMh5CDfPXIgULKn88z8l0=; b=Nchh7cARRFtmmmbfqinRxnva84sp0DLcrJr8bfHb7alj2dg1o2YXiicZgHBXuSVnVB 5cBofTcUJEf2y0rqW2Wp2pYyeARR0ifuenU1p6s6j/mggdHamFElEWYISwyLMLD9reLw wQgmOgaBXyBMHLhLOiNcBpZlZ9rzYX66F48yPnfyAJa2Im6D21ttOS6WdU1MYhbXtkmu KArKDTSVSosKGt59UzuLqfOka+GDUv7sgbuPM3LDN2UZ6z1QejdC5zuuJtocH0t3ix+y Yw0gBo3rH++k3yn1Ad1Yh41ndp+Cq5Y004StVRg/yb+I3BBh0lK1t9IuIB0f5sKeognp dhTw==
X-Gm-Message-State: AGRZ1gI/jpcKzR6sRSCK43ZF05I5pYfHsiCwgzYpCWn7vTqJtVZ5g0Ld HjyquaanDQt5G/g3StLaUQD801t+zH7fVfrQ
X-Google-Smtp-Source: AJdET5ftyRujGdXVwebYHekkXf+k05pWkRW5DJ6+Y8LUsoO8Bg1zaHM9kGFlxqWrr1y14XQUq/ZW6Q==
X-Received: by 2002:a62:12d0:: with SMTP id 77-v6mr3576506pfs.140.1541662724878; Wed, 07 Nov 2018 23:38:44 -0800 (PST)
Received: from [31.133.137.177] (dhcp-89b1.meeting.ietf.org. [31.133.137.177]) by smtp.gmail.com with ESMTPSA id q25sm4418620pgb.2.2018.11.07.23.38.43 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 07 Nov 2018 23:38:44 -0800 (PST)
From: John Bradley <ve7jtb@ve7jtb.com>
X-Google-Original-From: John Bradley <VE7JTB@ve7jtb.com>
To: unbearable@ietf.org, Brian Campbell <bcampbell@pingidentity.com>
Message-ID: <7924452d-3d73-1c02-bfee-c6401cca32a4@ve7jtb.com>
Date: Thu, 8 Nov 2018 14:38:42 +0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:64.0) Gecko/20100101 Thunderbird/64.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------F6BABC83269AB46CFDB7E5C2"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/MH3DOE1aE86fzQ-1aq4LjucHc58>
Subject: [Unbearable] IPR for HTTPS Token Binding with TLS Terminating Reverse Proxies
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Nov 2018 07:38:49 -0000

I am working on the shepherd writeup for HTTPS Token Binding with TLS 
Terminating Reverse Proxies document: 
https://tools.ietf.org/html/draft-ietf-tokbind-ttrp-07 
<https://tools.ietf.org/html/draft-ietf-tokbind-protocol-14>One item in 
the template requires me to indicate whether each document author has 
confirmed that any and all appropriate IPR disclosures required for full 
conformance with the provisions of BCP 78 and BCP 79 have already been 
filed. Brian can you please confirm?