Re: [VoT] IPR disclosures

"Grassi, Paul A. (Fed)" <> Fri, 24 November 2017 04:17 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 9107A1294DC for <>; Thu, 23 Nov 2017 20:17:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: 0.09
X-Spam-Status: No, score=0.09 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id 2ONZRWxPELTn for <>; Thu, 23 Nov 2017 20:17:48 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 922691294A3 for <>; Thu, 23 Nov 2017 20:17:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=selector1-nist-gov; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Wzro2LSqapaX8iQAR6vLLF5f2RBDHFp+mwAQYlyalko=; b=WCGCb6+dSDrE8CJ6gNFhhHgT55wd3p/gqb/ORHfmTxZkfbqJFa9gD4j7tWK/6imPeanL4JM1mafB2dQKO/g9c8AM/dZrwLp9jqcFcbWYvp2XXGwZqBMGCJMv9QmPnjnPTkYmDiQ/cITnQ+Zs9UubbygpcW2Z1F4tpd+bloPOww8=
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id; Fri, 24 Nov 2017 04:17:44 +0000
Received: from ([]) by ([]) with mapi id 15.20.0260.006; Fri, 24 Nov 2017 04:17:44 +0000
From: "Grassi, Paul A. (Fed)" <>
To: Chris Drake <>, Phil Hunt <>
CC: John Bradley <>, Leif Johansson <>, "Justin Richer" <>, "" <>
Thread-Topic: [VoT] IPR disclosures
Date: Fri, 24 Nov 2017 04:17:44 +0000
Message-ID: <>
References: <> <> <> <> <> <> <> <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/f.27.0.171010
x-originating-ip: []
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BLUPR09MB0850; 6:dYjRkviWEXNdW7B+OVfdcqoS08ctxdwUc44z/EwmUUer8oizuZetfqOT/X0O0ZabUCsVWC7aSMRrgcwgFjcwvLkwSlNc+rtzaXvWbm45wLQqckvkEf0ursg14dRPGzI54dOJCIpnqKn8KnHti2jlZctF+/DOqcU/TlipAJiZpwmtAoj1C1zMpzahYsNMluFqhFQsafjkKySngXtWTw4d4tFezuAqmjWyhJxnqQeM0ZwAYifEt73euJvUJx6lw/Dijr9F9iy9C40bahKw4yWcNqDc9it5hWQEy+jWyv5ccZn4hPElxCXAGM+NFk1yur9Aq1TlcP+n54b6RLqWE3evAzBaDyJP+fvjegr7HZvzbXg=; 5:eWHRwDCMmN8ZflJnCKKHQOVuGDaav7j7GPzS6+ZEQm2XtQpTv3fAzmTHMEUiqNp0tUPZGqPrzGC7aKhLuqchPXjFWft749gk+CDMR/BeWPP3uhBFoSPNPAlcZL8l0QyreeK1bO6CZJJVnTv4mLvzvocw0xKiYxRjfreWgeyhrJE=; 24:faKxkyHwdsLIAcCoCPVvQa/bN93csaUZnfvU4AUAV3O1WaErX06ZP0kPaWM2ltFOZJZBlxnmnSviTvCXPEWT5NhN/wwC2JRI5HTpAENSslQ=; 7:zfubJzC0V4KHDdyOR8A+l70ZTakLvAQRk9dlkcYuEWqPcGFl3rT7InNOGvZBjSI1dUWv/WPZ6xo00YOGfQaOgUm8aAP3IidPH2H6pjirdi1mdZM1MJYBjBlBM1RaSruS4vvbCg4ft2+WVuwtA9qT1KDcOaGF0Lq6iiS6Hk6vuJPvOZ88793rdUeTPVvycMym44j8H78D8uZQ3ZrOo4u69hUvDCEGoDrHOBYulzNt7U2wmPZHoEChXGZwtt7qFeNM
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(48565401081)(2017052603199); SRVR:BLUPR09MB0850;
x-ms-traffictypediagnostic: BLUPR09MB0850:
x-ms-office365-filtering-correlation-id: 263ba06a-d632-4035-f14b-08d532f24fc8
x-microsoft-antispam-prvs: <>
x-exchange-antispam-report-test: UriScan:(65766998875637)(189930954265078)(31418971418879)(227612066756510)(219752817060721)(21748063052155)(69029272430364)(146099531331640);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(2401047)(5005006)(8121501046)(10201501046)(3231022)(93006095)(93001095)(3002001)(6055026)(6041248)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123562025)(20161123560025)(20161123558100)(20161123564025)(6072148)(201708071742011); SRVR:BLUPR09MB0850; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:BLUPR09MB0850;
x-forefront-prvs: 05015EB482
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(346002)(376002)(366004)(199003)(377424004)(24454002)(189002)(2950100002)(6506006)(4326008)(36756003)(106356001)(316002)(478600001)(6246003)(2900100001)(5660300001)(45080400002)(7736002)(68736007)(2906002)(3660700001)(50986999)(54356999)(76176999)(86362001)(575784001)(8936002)(229853002)(3280700002)(97736004)(83716003)(102836003)(3846002)(6116002)(5003630100001)(6486002)(77096006)(4001150100001)(966005)(99286004)(101416001)(6436002)(83506002)(53546010)(606006)(53936002)(82746002)(105586002)(25786009)(81156014)(81166006)(8676002)(58126008)(54906003)(110136005)(33656002)(236005)(6512007)(14454004)(6306002)(54896002)(93886005)(19627405001)(66066001)(189998001); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR09MB0850;; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None ( does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is );
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_30FC66864AFC44B082D1027CE3DDC3D5nistgov_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 263ba06a-d632-4035-f14b-08d532f24fc8
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Nov 2017 04:17:44.3117 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR09MB0850
Archived-At: <>
Subject: Re: [VoT] IPR disclosures
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Vectors of Trust discussion list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 24 Nov 2017 04:17:51 -0000

As the USG rep, I can confidently state that the use case this version supports is 90% of our use cases. Don’t hold us up for the last 10%. That 10% will be amazing, but can come later. What is being asked for is gold-plating, not something that if not done means we are wrong.


From: Chris Drake <>
Date: Thursday, November 23, 2017 at 10:49 PM
To: "Grassi, Paul A. (Fed)" <>ov>, Phil Hunt <>
Cc: John Bradley <>om>, Leif Johansson <>se>, Justin Richer <>du>, "" <>
Subject: Re: [VoT] IPR disclosures


I'm on the side of "get it right".  OpenID swept a similar range of topics into the "out of scope" basket, which rendered their first standard so unusable they had to come back and do a second one.

Lets at least learn from history, and build something *effectively useable* out of the gate.

You can't drive unsafe or inappropriate cars on any roads, let alone in a SAML lane.  Nobody cares *how* it goes wrong, they just care that it did - so it's our job to look ahead and watch out for those obstacles now; rather than shroud them in SEP<>amp;reserved=0>.

Kind Regards,
Chris Drake

Friday, November 24, 2017, 1:27:18 PM, Grassi, Paul A. (Fed) wrote:

Fine. But as I have said you want a unicorn when we just want a car that can drive in the same Lane as SAML. Your unicorn is coming, as the phases of igov include international agreement on vot vectors/values and attribute metadata to assert 'assurance' of attributes that are unrelated to proofing.

I happy for your contribution don't take unicorn comment poorly. Just a quick post turkey dinner way of making a point. Happy US Thanksgiving.

Sent from my iPhone

On Nov 23, 2017, at 5:25 PM, Phil Hunt <<>> wrote:

The issue i am concerned about then is that by leaving out the issue of claims than the vot is incomplete and would require a separate statement.

This leads to a lot of interop and complexity problems down the road.  Which value wins etc given they would overlap.

The vot does not have to address it now but it should have the capability to do so (that may not be possible without a model).

This is a lot like when we found loa was actually multi dimensional and it had to dramatically change.  IAL falls into the same problem.


On Nov 23, 2017, at 2:08 PM, Leif Johansson <<>> wrote:

On 2017-11-23 21:23, John Bradley wrote:


As part of the write-up for the Vectors of trust document, we need an

IPR disclosure from all of you.

Are you aware of any IPR related to the following VOT document?

Please reply to the list.


John B.

I am not.


vot mailing list<>

vot mailing list<>