Re: [Unbearable] Adam Roach's Yes on draft-ietf-tokbind-https-14: (with COMMENT)

John Bradley <ve7jtb@ve7jtb.com> Tue, 05 June 2018 19:28 UTC

Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 70732130DCE for <unbearable@ietfa.amsl.com>; Tue, 5 Jun 2018 12:28:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ve7jtb-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WN2e9v_BDb0h for <unbearable@ietfa.amsl.com>; Tue, 5 Jun 2018 12:28:49 -0700 (PDT)
Received: from mail-wr0-x234.google.com (mail-wr0-x234.google.com [IPv6:2a00:1450:400c:c0c::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 60ADF131145 for <unbearable@ietf.org>; Tue, 5 Jun 2018 12:28:49 -0700 (PDT)
Received: by mail-wr0-x234.google.com with SMTP id d8-v6so3638776wro.4 for <unbearable@ietf.org>; Tue, 05 Jun 2018 12:28:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ve7jtb-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=L/ayTEifHPqz1FjBROPkeXol9MzCU0h3/9zPx+oFJVg=; b=gI5V6sVmXgjs88dqWmfEQ54TXuoHHkd5Qm+f/HnQI80Easzakb7qgJDqNnoLpVeazi HRpAcz7yuzyFoRJL03lh1kFiuoFb6wTkTMvbwf4c5ScQzXHZ55DJeogVNFSV3Z9M2x87 PWr0aH+nBpCNacjQgZWw19jDCeGhC8ZusKSTmGHrKPUjtfRVZ8NqQSYe/7JocL0UtArL ErS9W8fANNX+qHd2AaJPQOb2hRiV+NGIJCIlyNZqBNRbQWMQvuCne0jf16+66MgONyPn 4/UJpaR3yrVZRlyRYzkSSzjnDnTorPp7Aymmrk61Al2Abl8yZG59Advm3mbvzbS07c7q 99fQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=L/ayTEifHPqz1FjBROPkeXol9MzCU0h3/9zPx+oFJVg=; b=FF2c1Zw+GxbsMp4vXkRG4ZoSp2qNswRC7RcLiyrl+K7b5OnH9x98ljwFf9G0ueW7Bt 7YiY5seFkAAbR18cL+GsDdU/WzDE5ZsIiciM+iIyxGxN29W53/gULFlQFITzMt9sV5hs hEO/TkYGTwhXeoZSUsLlwKm2ZYD93nWHNPyozXK/ycmpfYMiBShKVG1ikA6AbRfVq8TD Rjfpg0QasCT+Vu+zVYn9tS4xGMG/yrf1Pz0uaEn0l8OcgsTtHwy8k7W01Kh6e1usbuZD 7tSo2vAuYbrDyf2V7nNdMQ8f2u2jamcX424quaftdHW0+JbIetFjeBO5WgElEKukBH64 idXQ==
X-Gm-Message-State: ALKqPweNdhq3/1vI+rOCLcd5js8l2Ee0k9J0gHzAFXAGGGGIL6VzPftg r2AeUb7D48EcpMMLFziCwpqJPBqftzCFQwJH+J32uA==
X-Google-Smtp-Source: ADUXVKIKsPfu2OclNRSHqhq5maOVB7A+nhxqmR++YsiksxpjQBjk55YA0lByuyv5NnJQxZx9VCjYFK5g0ZpqJzfRFAM=
X-Received: by 2002:adf:9441:: with SMTP id 59-v6mr15882279wrq.274.1528226927429; Tue, 05 Jun 2018 12:28:47 -0700 (PDT)
MIME-Version: 1.0
References: <152575956787.20253.13180458622500226833.idtracker@ietfa.amsl.com> <CADHfa2DPni78gNNZyQr6Tbt6DTzVWY+md7L4220NPTDprUCp6A@mail.gmail.com> <c103c5d7-3508-23b5-aae0-165dcd81db17@nostrum.com> <CACdeXiKnuLxR5ZVn9D9p9CHk+SBqFMOJGeziKjVNAw9AifvmMQ@mail.gmail.com> <b9cc789a-6b18-38d1-e693-479071c70f16@nostrum.com> <CACdeXiLuNdafwooaADVqdk4xZQqG9GPjtM528JZR-Tfb3+TJ4Q@mail.gmail.com> <69cb4854-912f-cc4f-1a61-d730ac53b89d@nostrum.com>
In-Reply-To: <69cb4854-912f-cc4f-1a61-d730ac53b89d@nostrum.com>
From: John Bradley <ve7jtb@ve7jtb.com>
Date: Tue, 5 Jun 2018 21:28:34 +0200
Message-ID: <CAANoGh+4G73ZD0FrHLqj1Jrb4SpfEt=SO33zmHmVeD2M0pDkuw@mail.gmail.com>
To: Adam Roach <adam@nostrum.com>
Cc: Nick Harper <nharper@google.com>, Dirk Balfanz <balfanz@google.com>, The IESG <iesg@ietf.org>, Tokbind WG <unbearable@ietf.org>, tokbind-chairs@ietf.org, draft-ietf-tokbind-https@ietf.org
Content-Type: multipart/alternative; boundary="000000000000255d09056dea0fad"
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/bWKTTh2r2l38fiz5-Tkbam90DIY>
Subject: Re: [Unbearable] Adam Roach's Yes on draft-ietf-tokbind-https-14: (with COMMENT)
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jun 2018 19:28:53 -0000

I think adding a non normative reference to the current draft of tls13 is
fine.  The data tracker will have the forward reference to the final spec
if someone follows it.

John B.

On Tue, Jun 5, 2018, 9:07 PM Adam Roach <adam@nostrum.com> wrote:

> On 6/5/18 2:01 PM, Nick Harper wrote:
>
> On Tue, Jun 5, 2018 at 11:50 AM, Adam Roach <adam@nostrum.com> wrote:
>
>> Then please add an informative reference to draft-ietf-tokbind-tls13.
>>
>> /a
>>
> The reason for splitting off draft-ietf-tokbind-tls13 into a separate
> draft was so that publication of draft-ietf-tls-tls13 doesn't delay
> publication of the 3 core tokbind drafts (draft-ietf-tokbind-protocol,
> draft-ietf-tokbind-negotiation, and draft-ietf-tokbind-https). It sounds
> like adding a reference to draft-ietf-tokbind-tls13 would result in
> postponing publication of at least this draft until both
> draft-ietf-tls-tls13 and draft-ietf-tokbind-tls13 get published.
>
>
> It would if the reference were normative. This is why I said "informative
> reference" above.
>
> /a
>