Re: [Unbearable] Ignas Bagdonas' No Objection on draft-ietf-tokbind-protocol-17: (with COMMENT)

Andrei Popov <Andrei.Popov@microsoft.com> Thu, 10 May 2018 00:14 UTC

Return-Path: <Andrei.Popov@microsoft.com>
X-Original-To: unbearable@ietfa.amsl.com
Delivered-To: unbearable@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B8BEA12DA45; Wed, 9 May 2018 17:14:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cTOFoc_VIsmL; Wed, 9 May 2018 17:14:29 -0700 (PDT)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0100.outbound.protection.outlook.com [104.47.42.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B763D12D7F0; Wed, 9 May 2018 17:14:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=HVYPYQiVMIj5toLTQVMchdBbgye2W9F8QeMcNpfDcko=; b=WDdz6t1KlbE/vOdh2r2vgG232/QHLjnkp7IDmgoseXEy4R7k2BlkBflfm5mZLgIdnhLWmAoIUe1eV3AIY7yDJJ2tAaTkVCQIbiIA11TlDEQ/8aSSWIWtZW80PcuOd3FErMRFTjPM6LRZrS+ndhmUb1psQPUHAZbkmZ/CVm/Or08=
Received: from DM5PR21MB0507.namprd21.prod.outlook.com (10.172.91.141) by DM5PR21MB0762.namprd21.prod.outlook.com (10.173.172.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.776.1; Thu, 10 May 2018 00:14:28 +0000
Received: from DM5PR21MB0507.namprd21.prod.outlook.com ([fe80::49e8:420f:baa2:a62f]) by DM5PR21MB0507.namprd21.prod.outlook.com ([fe80::49e8:420f:baa2:a62f%6]) with mapi id 15.20.0776.004; Thu, 10 May 2018 00:14:28 +0000
From: Andrei Popov <Andrei.Popov@microsoft.com>
To: Ignas Bagdonas <ibagdona@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-tokbind-protocol@ietf.org" <draft-ietf-tokbind-protocol@ietf.org>, John Bradley <ve7jtb@ve7jtb.com>, "tokbind-chairs@ietf.org" <tokbind-chairs@ietf.org>, "ve7jtb@ve7jtb.com" <ve7jtb@ve7jtb.com>, "unbearable@ietf.org" <unbearable@ietf.org>
Thread-Topic: Ignas Bagdonas' No Objection on draft-ietf-tokbind-protocol-17: (with COMMENT)
Thread-Index: AQHT5pYWmVvYh/4o60OfmfvoiXXRWaQoGksw
Date: Thu, 10 May 2018 00:14:28 +0000
Message-ID: <DM5PR21MB0507B19DFD84E7968192ABEB8C980@DM5PR21MB0507.namprd21.prod.outlook.com>
References: <152576103737.20117.11907327449661003013.idtracker@ietfa.amsl.com>
In-Reply-To: <152576103737.20117.11907327449661003013.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [2001:4898:80e8:c::4ca]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR21MB0762; 7:kdOjnBOiK9DR/jSIT/T8kQEkCK0vf1+zHLRyR0dC2psbcDJ46pg0KYmsdAwIBKer3jRXv5qd0eXe3GMeOfadfinJ9BJ6jhSzfx8FjebzPvm1jWDw8I5ebhneaZiGXVLkrPix4HnEgGKqd2fupMftc3kGNGpE0u18o2yeY+eSQhuaP/hfN58PL4pGeptFVow26J+EHfHczU9DXucr0MqBWA4yfvib1aDWONUVtBDVwd/UU44cMpQEbip1t2RmPoXU; 20:T7dDIQGv6wVHKkO5W8Frj7WNjsfXWvbN+B0tOnFxeDEbgR1G3sbQcosv6CAyxw7K8icy2/Gp/G5YQ9rTSweAuZE14uJBGQaa8SShpE9+7ctOM0oATgkmahVARE5KPcVVxgxmLarznpiQ47Sv0UqLSlSxcNilPhNM8NOzw7B5lyM=
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(4534165)(4627221)(201703031133081)(201702281549075)(5600026)(48565401081)(2017052603328)(7193020); SRVR:DM5PR21MB0762;
x-ms-traffictypediagnostic: DM5PR21MB0762:
x-microsoft-antispam-prvs: <DM5PR21MB076208F977F14FA41496F5968C980@DM5PR21MB0762.namprd21.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(189930954265078)(85827821059158)(219752817060721);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(10201501046)(3231254)(2018427008)(944501410)(52105095)(93006095)(93001095)(3002001)(6055026)(149027)(150027)(6041310)(20161123564045)(20161123558120)(20161123562045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:DM5PR21MB0762; BCL:0; PCL:0; RULEID:; SRVR:DM5PR21MB0762;
x-forefront-prvs: 066898046A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39860400002)(366004)(376002)(396003)(346002)(39380400002)(13464003)(199004)(189003)(11346002)(46003)(446003)(22452003)(8936002)(86612001)(486006)(86362001)(5250100002)(76176011)(575784001)(99286004)(2900100001)(7696005)(476003)(6436002)(81156014)(3660700001)(14454004)(3280700002)(8676002)(2906002)(53546011)(54906003)(5660300001)(102836004)(316002)(110136005)(186003)(6506007)(6346003)(97736004)(25786009)(33656002)(68736007)(6116002)(229853002)(74316002)(8990500004)(72206003)(106356001)(81166006)(105586002)(6306002)(10090500001)(478600001)(7736002)(305945005)(53936002)(6246003)(55016002)(10290500003)(39060400002)(966005)(4326008)(9686003); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR21MB0762; H:DM5PR21MB0507.namprd21.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Andrei.Popov@microsoft.com;
x-microsoft-antispam-message-info: CLYrZPHXuOreI1FUTAPUmcIQ5qdyU1ASWV6AMvQVV3NV3VmDxL5ctYbz0vx4eBMWL3tyewCS3h+VPm+J+w6kGR2ASO6E2XOgGodEhRbwl/i7oKqvhJPJgctu8Y8H1VTT3bfxk5zWHglQOQ2/T7wErEtx+rC51DVe2wfji3WuK2IOpMr4FkqriWv4ZhKVi7q8
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: e4f69f37-665b-42b8-6aa3-08d5b60aff12
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e4f69f37-665b-42b8-6aa3-08d5b60aff12
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 May 2018 00:14:28.6957 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR21MB0762
Archived-At: <https://mailarchive.ietf.org/arch/msg/unbearable/AdIKjMrZ1LaxaQJnvjL1Eyakzdo>
Subject: Re: [Unbearable] Ignas Bagdonas' No Objection on draft-ietf-tokbind-protocol-17: (with COMMENT)
X-BeenThere: unbearable@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "\"This list is for discussion of proposals for doing better than bearer tokens \(e.g. HTTP cookies, OAuth tokens etc.\) for web applications. The specific goal is chartering a WG focused on preventing security token export and replay attacks.\"" <unbearable.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/unbearable>, <mailto:unbearable-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/unbearable/>
List-Post: <mailto:unbearable@ietf.org>
List-Help: <mailto:unbearable-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/unbearable>, <mailto:unbearable-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 May 2018 00:14:32 -0000

Thanks Ignas, I'm adding version encoding information in the next revision of the document.

Cheers,

Andrei

-----Original Message-----
From: Ignas Bagdonas <ibagdona@gmail.com> 
Sent: Monday, May 7, 2018 11:31 PM
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-tokbind-protocol@ietf.org; John Bradley <ve7jtb@ve7jtb.com>om>; tokbind-chairs@ietf.org; ve7jtb@ve7jtb.com; unbearable@ietf.org
Subject: Ignas Bagdonas' No Objection on draft-ietf-tokbind-protocol-17: (with COMMENT)

Ignas Bagdonas has entered the following ballot position for
draft-ietf-tokbind-protocol-17: No Objection

When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.)


Please refer to https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fiesg%2Fstatement%2Fdiscuss-criteria.html&data=02%7C01%7CAndrei.Popov%40microsoft.com%7C2a8f2642f6804374224608d5b4ad377c%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C1%7C636613578424291556&sdata=KnEc2CqOxktjgX0PuTg7cY%2F%2F6mwCrp8%2FgljyRhM%2FS3Y%3D&reserved=0
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-tokbind-protocol%2F&data=02%7C01%7CAndrei.Popov%40microsoft.com%7C2a8f2642f6804374224608d5b4ad377c%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C1%7C636613578424291556&sdata=T%2BIpZPXBvxhOAn0e3TQK9YEBUJDPxCJvg2J0ipeSNj8%3D&reserved=0



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

A clearly written document. Thank you.

A small nit: the document states that it specifies version 1.0 of protocol, but the actual version value is defined in tokbind-negotiation document, there is no mention of version encoding in the protocol document itself. Is this intentional?