Re: [Uta] New I-D on VC and TLS
Andrea Vesco <andrea.vesco@linksfoundation.com> Tue, 20 February 2024 08:51 UTC
Return-Path: <andrea.vesco@linksfoundation.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F9BDC14F5E6 for <uta@ietfa.amsl.com>; Tue, 20 Feb 2024 00:51:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=istitutoboella.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NQOlAr-yKZxc for <uta@ietfa.amsl.com>; Tue, 20 Feb 2024 00:51:15 -0800 (PST)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-db3eur04on2103.outbound.protection.outlook.com [40.107.6.103]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8CD1C15154F for <uta@ietf.org>; Tue, 20 Feb 2024 00:51:14 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QgPIHoPRIs16BylKYpwtue3X4OtwpKNKCy6BtQ572eXyCd+kP4MPFlELhMEyfYw2LkBe/L0M4LqUh933UKOGWB7/eJ14WJ+mjLrMnOIu/U9atrh+23K+FoUf/udnm0lqPepjsQr0zLzQLp6PSH0PtcJ5ho8n0NR4/q0oXkiKr7D7V0MBo9JpGgxZzKivF5cS75KzsHnKYy0lErXDaMmJaIANHZmV30nyXAlZMGjf8ktTwdkcqMIO7itXMq/b3ECEM7/tLhmeEGDyoODe6Sr0UvXz47ysI52ROvZLCYWeqEn2rGpEnUEgx7gA5vHXSOFnovR+StlniHdj3PA6zxZa0w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3QXPhYpR6Gam6+mhj3C/OGmFZuRCoDLmxjy7ndurqXk=; b=GK1SSZHE5CQYMMHSdySGJK+y3LocbAcgL4iXupLeh0NV4/9JEfNk5oJFTRj6vo3sOepaKlwjhVr4xAam9RZh4xB++qo7WalNHhguKVvM0dZQCdsg9hW/o1H0BVLDzYldnVAgw2B/8BfYTONIH1H4r1n82Muiyk/n0eKoAcOEFmN9LGfayU9ukyYXRYX9ilVxSqSTU/BA4b6IYmE5adcqRW1mofzSdKqThbZiVXOrmcQMmZXoxQhZgpBHI9IxHazG5SDaSAqSDhoJ8fxi4+DhRElL7scMMIGXUCvqlUdifYMNq2ka+P4utmV4Qo61R2DjbQ++auvkvyYVsx8aDHNt2Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=linksfoundation.com; dmarc=pass action=none header.from=linksfoundation.com; dkim=pass header.d=linksfoundation.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=istitutoboella.onmicrosoft.com; s=selector2-istitutoboella-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3QXPhYpR6Gam6+mhj3C/OGmFZuRCoDLmxjy7ndurqXk=; b=k1YC3hAUT9Y1oQXz8h6qKsYdPDahz7Um3sfn/v2oQ1kmlbQsrHuJdi7R6c/vJUJnjeOG1Np710j+p2ZxPzejOCYtgbJIcVNkiXoPSXxWZn+Zcsl+wya2tHuYMRhvC1iM74jz6yKt+WQWQMtBCO10zSFl4AlThXE5i0h4s4iPQt4=
Received: from DB9P195MB1130.EURP195.PROD.OUTLOOK.COM (2603:10a6:10:268::18) by PR3P195MB1120.EURP195.PROD.OUTLOOK.COM (2603:10a6:102:96::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7316.19; Tue, 20 Feb 2024 08:51:11 +0000
Received: from DB9P195MB1130.EURP195.PROD.OUTLOOK.COM ([fe80::8fe7:f255:db56:97af]) by DB9P195MB1130.EURP195.PROD.OUTLOOK.COM ([fe80::8fe7:f255:db56:97af%6]) with mapi id 15.20.7316.018; Tue, 20 Feb 2024 08:51:11 +0000
From: Andrea Vesco <andrea.vesco@linksfoundation.com>
To: "Yanlei(Ray)" <ray.yanlei@huawei.com>
CC: "uta@ietf.org" <uta@ietf.org>
Thread-Topic: [Uta] New I-D on VC and TLS
Thread-Index: AQHaYxGoL+hwSNYMCUuZVH8NAqF8lLERm3MAgAFSQoA=
Date: Tue, 20 Feb 2024 08:51:11 +0000
Message-ID: <D4E6E6A5-0192-4C45-B8B0-204C03F2E41B@linksfoundation.com>
References: <D3F7994C-B82F-4890-8EB0-0BBBE3D7D608@linksfoundation.com> <e0a27c12cc1d456c9194a1dc3ea85513@huawei.com>
In-Reply-To: <e0a27c12cc1d456c9194a1dc3ea85513@huawei.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3731.700.6)
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=linksfoundation.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DB9P195MB1130:EE_|PR3P195MB1120:EE_
x-ms-office365-filtering-correlation-id: 4c74186b-91fb-4a80-89a4-08dc31f1167c
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9P195MB1130.EURP195.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(38070700009); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-ID: <544F104A773F84428BF80B89605F6A96@EURP195.PROD.OUTLOOK.COM>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: linksfoundation.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DB9P195MB1130.EURP195.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 4c74186b-91fb-4a80-89a4-08dc31f1167c
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Feb 2024 08:51:11.3479 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46a5eda7-5583-400d-805d-330f6efe08bd
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: PRi03kFA5Ld5sCw/Z9jOz2q5ZBmL3WP8MidtnK9/KVmOHC7pivOw0cGMS20Wx8I4lGIgxDAbh9GBifE7tUL1OVEJWI8f8Sd+6fHbIyevIM1uj/xJMkXxin7p52CED7cV
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR3P195MB1120
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/ZyyIpAX8egKeoESEbT2U0pN7VR8>
Subject: Re: [Uta] New I-D on VC and TLS
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Feb 2024 08:51:20 -0000
Thanks for the comment. The I-D describes how to add VCs as a certificate type in TLS while maintaining the interoperability with other certificates. The aim is to move SSI-based authentication from the application layer down to TLS without changing the way SSI and TLS work. The SSI model (based on the use of VC [0] and DIDs [1]) specifies the use of DLT (or more generally Verifiable Data Registry) to store and retrieve public keys. We will clarify this point in the abstract and introduction of the next version. Andrea Vesco [0] https://www.w3.org/TR/vc-data-model-2.0/ [1] https://www.w3.org/TR/did-core/ > On 19 Feb 2024, at 13:40, Yanlei(Ray) <ray.yanlei@huawei.com> wrote: > > The motivation for your design needs to be described in the draft. > Why do you want to put the public key in the distributed ledger? > > Lei YAN > > -----Original Message----- > From: Uta <uta-bounces@ietf.org> On Behalf Of Andrea Vesco > Sent: Monday, February 19, 2024 4:57 PM > To: uta@ietf.org > Subject: [Uta] New I-D on VC and TLS > > L.Perugini and I have written an I-D on the use of Verifiable Credential (VC) as a new means of authentication in TLS. We think it might be of interest and in the scope of the UTA WG. > > Could you please give us your opinion? > > Draft > Datatracker https://datatracker.ietf.org/doc/draft-vesco-vcauthtls/ > Github https://github.com/Cybersecurity-LINKS/draft-vesco-vcauthtls > > Kind Regards, > Andrea Vesco > _______________________________________________ > Uta mailing list > Uta@ietf.org > https://www.ietf.org/mailman/listinfo/uta
- [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Yanlei(Ray)
- Re: [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Henk Birkholz
- Re: [Uta] New I-D on VC and TLS Stephen Farrell
- Re: [Uta] New I-D on VC and TLS Andrea Vesco
- Re: [Uta] New I-D on VC and TLS Stephen Farrell
- Re: [Uta] New I-D on VC and TLS Sean Turner
- Re: [Uta] New I-D on VC and TLS Orie Steele
- Re: [Uta] New I-D on VC and TLS Salz, Rich