Re: [websec] Issue 52 - Key pinning draft should clarify max-age as required

Yoav Nir <ynir@checkpoint.com> Wed, 06 March 2013 20:45 UTC

Return-Path: <ynir@checkpoint.com>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FEEC21F8C4E for <websec@ietfa.amsl.com>; Wed, 6 Mar 2013 12:45:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.449
X-Spam-Level:
X-Spam-Status: No, score=-10.449 tagged_above=-999 required=5 tests=[AWL=0.150, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C3yKR8se2d7i for <websec@ietfa.amsl.com>; Wed, 6 Mar 2013 12:45:11 -0800 (PST)
Received: from smtp.checkpoint.com (smtp.checkpoint.com [194.29.34.68]) by ietfa.amsl.com (Postfix) with ESMTP id 477FE21F8C1A for <websec@ietf.org>; Wed, 6 Mar 2013 12:45:10 -0800 (PST)
Received: from DAG-EX10.ad.checkpoint.com ([194.29.34.150]) by smtp.checkpoint.com (8.13.8/8.13.8) with ESMTP id r26Kj9IP017211; Wed, 6 Mar 2013 22:45:09 +0200
X-CheckPoint: {5137AA6A-0-1B221DC2-2FFFF}
Received: from IL-EX10.ad.checkpoint.com ([169.254.2.54]) by DAG-EX10.ad.checkpoint.com ([169.254.3.95]) with mapi id 14.02.0342.003; Wed, 6 Mar 2013 22:45:09 +0200
From: Yoav Nir <ynir@checkpoint.com>
To: Tom Ritter <tom@ritter.vg>
Thread-Topic: [websec] Issue 52 - Key pinning draft should clarify max-age as required
Thread-Index: AQHOGTxgXL1HU6c700CGCKOcR8J+spiX2HEAgAEqjIA=
Date: Wed, 6 Mar 2013 20:45:09 +0000
Message-ID: <827E3E53-CFBC-4CF6-9E26-B02673F90B32@checkpoint.com>
References: <d7f19a6748738de27ee5080bc81b1b75.squirrel@webmail.dreamhost.com> <CA+cU71k6AFFL85mYn_po2iQhKf2uZS=YgecH6xePEtRt_OQQCA@mail.gmail.com>
In-Reply-To: <CA+cU71k6AFFL85mYn_po2iQhKf2uZS=YgecH6xePEtRt_OQQCA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [172.31.21.73]
x-kse-antivirus-interceptor-info: scan successful
x-kse-antivirus-info: Clean
Content-Type: text/plain; charset="us-ascii"
Content-ID: <576D49CF42B6734BB0C059307D4D95DD@ad.checkpoint.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "<websec@ietf.org>" <websec@ietf.org>
Subject: Re: [websec] Issue 52 - Key pinning draft should clarify max-age as required
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Mar 2013 20:45:15 -0000

I agree as well.

If we don't hear any objections on the list or at the meeting, we'll close this issue following the meeting.

Yoav

On Mar 6, 2013, at 4:56 AM, Tom Ritter <tom@ritter.vg> wrote:

> No objection to closing it out.
> 
> On 4 March 2013 19:56, Ryan Sleevi <ryan-ietfhasmat@sleevi.com> wrote:
>> This was one of the outstanding issues from draft-03, raised in
>> http://trac.tools.ietf.org/wg/websec/trac/ticket/52
>> 
>> The Chrises and I believe this has been addressed sufficiently in
>> draft-04, through the clarifications in
>> http://tools.ietf.org/html/draft-ietf-websec-key-pinning-04#section-2.1.1 and
>> http://tools.ietf.org/html/draft-ietf-websec-key-pinning-04#section-2.3.1
>> 
>> Are there any objections to closing this out?
>>