Re: [Uta] New I-D on VC and TLS
Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 20 February 2024 16:41 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AE74C15109A for <uta@ietfa.amsl.com>; Tue, 20 Feb 2024 08:41:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.008
X-Spam-Level:
X-Spam-Status: No, score=-2.008 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m2bt2VF1cJEa for <uta@ietfa.amsl.com>; Tue, 20 Feb 2024 08:41:26 -0800 (PST)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on2092.outbound.protection.outlook.com [40.107.7.92]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 43F01C14F708 for <uta@ietf.org>; Tue, 20 Feb 2024 08:41:25 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LRms2WFkMDIySFxnA+MbGLbpsVcpcpeHruI8pPnAtcM8Kn2IZTi4Nkf5UZVmuuMUP5hmQwajpimp7ihG/nwo95oAlcQS0NfCo0DfjGBBBkn3kNGnTvL4OubrPY4lwti7O0rokqm1HLe2QjclNbok78lFI5J2wiF+aChFqHvOeM1/kjoNIHLGJVkpa6xGetyoijk+ZY08XIX9Ani2pVCpj9cQ4X0QfkApl9Gj0E3v40qvG4tw16ZYQTAqXnfeP21AFkPPcihd2iXW7oFBuEvADdua8brMv5X/LCMMrKTwCkru+8yQmK8hnET7iVBPEpv6Z+xTSBQENm7YP/fqqTkyNA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3b2uuUjYN3zC9GW9+pM824uxe9B9PsUA/hgLBK+nmYo=; b=BCzjlw6ZkR8zWVUQXsURMXNBd6HoM4xWYov1e9V8Y00FXwhhryvGUw7yIXZPEpyqvVS1x9Txt94aWO2jrfPI9coGrjZA9JzOyXFxwvpRBL+HqKLyOu2nlR0CftqNf8NhfKlyc08ydDK413dBCduinJhOxVufxG0kvtWaJiZQr0tcKMHCRMO8Ec2ysmdl4yafv6MeFbl95UhAMotaHhiOrsq7lrMMP611r3k5M2MzGUhZuEWbdd1rPKlRmrAODgmaRqi0rhZneg1m2Pdr2UushGyvpZNH1JKiBEHmko59JkcymoVl+JmtzBMNspvWPuiXYD4BtMCGF6ofV1NhfCm5PQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3b2uuUjYN3zC9GW9+pM824uxe9B9PsUA/hgLBK+nmYo=; b=lyLsdzyaXNn8ervbtrvmH0xappO9NVtt575PKnT6LQp8b2dCEQdbS5L0+QxCmgZvoKPYYLi2A7RVPLj0Df4Emd96/eHhILc/wyYf/VVD393ItzDa8+mSypTVNAVR6eu/Aw9HH9aHp/+lCjw2gd4DNrx9PX6Ud4e1A4O0gC5DmWsXCLiP/ThQeDNqyAb/zms044lY2vMOuczXKGhdalmgh+M5YKS2Lw9mtZDB4C8nkn+8TMtLl8/ns/3t8dazwJqm8hERInBn64GG5LRTrWbk8tsBhhgR/2l01jgOeMyC4VFRyam0ePvMLrEL3EvyBO6T2XZpAK3coE/XbhP3I3Rfuw==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by AS2PR02MB8886.eurprd02.prod.outlook.com (2603:10a6:20b:555::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7292.34; Tue, 20 Feb 2024 16:41:22 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::29da:8147:6e33:c2b7]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::29da:8147:6e33:c2b7%4]) with mapi id 15.20.7292.036; Tue, 20 Feb 2024 16:41:22 +0000
Message-ID: <f525f5ef-6eab-41d0-9c9c-9abc27e57a63@cs.tcd.ie>
Date: Tue, 20 Feb 2024 16:41:19 +0000
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: Andrea Vesco <andrea.vesco@linksfoundation.com>, "uta@ietf.org" <uta@ietf.org>
References: <D3F7994C-B82F-4890-8EB0-0BBBE3D7D608@linksfoundation.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <D3F7994C-B82F-4890-8EB0-0BBBE3D7D608@linksfoundation.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------YYAf2hayj6U375Xufz09GQme"
X-ClientProxiedBy: DB6PR0301CA0080.eurprd03.prod.outlook.com (2603:10a6:6:30::27) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DB7PR02MB5113:EE_|AS2PR02MB8886:EE_
X-MS-Office365-Filtering-Correlation-Id: 410c6150-39b4-4bca-f1ae-08dc3232c53b
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: NwBNu+aWddvsZiZIhVzCkKkuhZQJqx5S1E6j7OkSiYs+wA5XHfRjohi1c1UW8VoF2c8LSt8rgXrqlPLJv1670R0p7ATDLF7wv9yk6X/mdWbiPXzp4J4G6K5tQHMGVOmy4jtNtlXtp9II4FhR1EKvxLtfcVfHrdNUVYOxGtMbAli/EzFbIsDKwRHRmNYrFNfYKlWsu14kDF55dKMHMD4eiEKln+eF4qugrXA7YgbhYlg+9tbWmGkWqqhBGI5Yk18bSKhXNJf2s8ymsSJS5te1aHgqRl8Nh+wdptN05lWj1J1Ba9px1fd0W7wKtCuDK4vAyolZLYT547uhGiQTQZ0NOP23eeFXQJF5IlJrgyyOET5o7sbxhL5wcitUrJkgrTY/caaK3hdCFz+coQad/bKKYckf1wpnTYjd66QbvaC0NDfIlq45DsY4gOlJ0lyf2djcDVTxSrWnocvqbeSbspoIQIkaHnaaE6HhwaiVD5YlvBcwqcaTJ3lHKQb9wEHhxUCVCVMlDshdJPCLdSKNeFx7qZMhYyxvEXZ00hoaf23y/1fHynbMgOCx2SzKxawKk60qJjb77RBiB76yFPJpSNAKekW4yQJm+yyUi3UG3xnl3feDYWmJMnH30ChUoHVhJH6lplvLW8FT55KldKUE33zp7sd4X9GXrClxM83B/RdAE/PwGRLfbjwFa/VhLfXzqZWwB0P798OSEDADhQHIjZO/GtpAtvLyY9B/le9/gpQuD2pFEVwRUNHvXO74kHwOKKkLpF+OTnvqh1vXGr6Pmeo5CVUjAlfvMqoWIM+7TMSOCMSaoTa8Ee+Hvgj353O96NRVVDhlnIShn805DWQuyo2r+In9cb6yIBF2PQ5ZpSa4VrZ/5j2fp/Mp8y6G6z1KRtPkaeGihvMz5VwNFbKxwQeb+xHbKt0gfrog6YPeGuyGuasg6uJcYGFefY81fml8O8iy0W/SAZeQ0WuLiURUprmGzL1qKmeXlvygcsihImF9nb4+U9J1K0pcUfCFV9nEFWqzUOwNmH2q/uNAeoUsuKMwcy10PRo6HQIhA7O9Cw1OI3u8Cf0z5LsvKz70S6pO2iqRZ7dze4NtAjKmLkOApN5ED3TAjArhHDTnJAuTa7SffgGDcsi4RukSwyM1kK/eZt/2h1gAYIgDq1vApzwO+JWF2KrJe8fQpwAZ3lTBjCgkf7JP4CFD0bNXtoU9f0W9lzBeo0kXvA5I5P7/1d9zyInUFIjFoThbEGXqXbC48v9rPA0ngn57rG09blbDe+zQswIZzDbBDrhRIQqt5Igc6dK6w8vZB+4ffzXalLw1zuMGXpt49vXyOpNyitvq3tU7Uo35qQGkAFKRL+oV+rGoDI/llM9OeEGRIFbup3xw/aqDmuYqMX6ht5orw2bGXTCvsoMl8uYYXtCcXkJcoLtFBsLBKWovX3p+xu5xOhb2ofTW3E2W+Eg0GL7Hd4jrDKvRN98iUvj6NTpz+0vTbSX0Yj5QUnN8n5qgFShUvdLimaK/j0M+jtQA0iDmdCAbJf7lzxeesr/SQ2bhvYuQQeX8+Pq/awNRy+POiYf7E1sfZVcoptpqHcspyVi2bzcDd8C3MQ9gJ4XTTtSgX58HqF2KhHwKnWsi5Z6CjzbrPfNw57hNW+MTSI6ojLl2dpmcynhFPf3k
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 410c6150-39b4-4bca-f1ae-08dc3232c53b
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Feb 2024 16:41:22.1293 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: Z9zai849+eDF4OYZF6qQxRp4JYLBLhRBMuvHFdUIdcWd4mjxQBvgDd/+VAtZj2uI
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS2PR02MB8886
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/Gcav3cgFze0Acd56bDUM2Zp7P7U>
Subject: Re: [Uta] New I-D on VC and TLS
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Feb 2024 16:41:30 -0000
Hiya, I had a quick flick look at the draft. ISTM that's one that'd need processing by the TLS WG and not UTA. (Even if you disagree with that, you may agree that it'll be better to give the TLS WG a heads-up as someone there is bound to dislike this and it'll be better to know that sooner rather than later:-) Cheers, S. PS: I'm not sure I like the idea of the kind of OCSP-like lookaside for checking credentials, from the privacy POV. On 19/02/2024 08:57, Andrea Vesco wrote: > L.Perugini and I have written an I-D on the use of Verifiable Credential (VC) as a new means of authentication in TLS. We think it might be of interest and in the scope of the UTA WG. > > Could you please give us your opinion? > > Draft > Datatracker https://datatracker.ietf.org/doc/draft-vesco-vcauthtls/ > Github https://github.com/Cybersecurity-LINKS/draft-vesco-vcauthtls > > Kind Regards, > Andrea Vesco > _______________________________________________ > Uta mailing list > Uta@ietf.org > https://www.ietf.org/mailman/listinfo/uta
- [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Yanlei(Ray)
- Re: [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Henk Birkholz
- Re: [Uta] New I-D on VC and TLS Stephen Farrell
- Re: [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Stephen Farrell
- Re: [Uta] New I-D on VC and TLS Sean Turner
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Salz, Rich