[Wimse] Re: [EXTERNAL] Re: Call for Adoption: Service to Service Authentication
Arndt Schwenkschuster <arndts@microsoft.com> Wed, 31 July 2024 13:07 UTC
Return-Path: <arndts@microsoft.com>
X-Original-To: wimse@ietfa.amsl.com
Delivered-To: wimse@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29374C14F6FB for <wimse@ietfa.amsl.com>; Wed, 31 Jul 2024 06:07:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.243
X-Spam-Level:
X-Spam-Status: No, score=-2.243 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_KAM_HTML_FONT_INVALID=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AqnWkl0-t24Z for <wimse@ietfa.amsl.com>; Wed, 31 Jul 2024 06:07:16 -0700 (PDT)
Received: from EUR02-VI1-obe.outbound.protection.outlook.com (mail-vi1eur02on2110.outbound.protection.outlook.com [40.107.241.110]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B451DC14F617 for <wimse@ietf.org>; Wed, 31 Jul 2024 06:07:15 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=EjF/NRi/1+l23mmpUbmGkRUJr1QMRkK7w07gNbHyx/ehk6ne6rv1ij+x3eI7WFXw4T8o5WW7Zqt25HFN3nrCmMZvEfoHzYO7/b+3W9SIvcPd2XuIi/Zu1H1nbHY8UE3Q/mR/xMgXMqt+F4O8Mp6RUSlZOYzES+D3oXHiMEnzVdYwR3KAvdteim07XeT5RkBlM5vVrK87lsbKSqirTfurXEYyKIwFRXzZklehKIrIMOy9ejHbgb1al9NHe9BG9wZ2u186acwyvA+Oy73nu8F88if2XgfgeXo9WWU8i+S+coK6TBr20SeHgJHnPdokOZY3naIhXcL3nLcXQjMlbFaepQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=B/78akdp7LO3fLVlU5unI8X9HQZ50ZYAih/1sUJsbrA=; b=xFagEl8IlgX58hXfdAG6NOELgQ2zg8YaZTpZapDsi+fWza5eLj0RVp0rUV+g0cpXk7+szgFJSkgGSRqFKubwRHTdlUPNKKUHDaTJMBITXCdfiUoQQRo73ouR1dPGnr4YcccH75NH4FB3LDh1DNf0yeClga06qsrMdzg7xYYj10kB7FJ7zNVN8fMt1nA4M+vPz4tWW4cJ8X402HGh4hpA3OXChjVKkk56kNzVXsgpDITWPR1lwXE0zv/zWmp0ShlNTymj6QR3zJ4X6Va8+Q8lH/Y2p+4IJW2t0FOiyB0qJmF4pIzA/E++NZz0uYpYxRyt0jlgm1gu2By5N2bdKCGbKw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=B/78akdp7LO3fLVlU5unI8X9HQZ50ZYAih/1sUJsbrA=; b=S2eSKv6Ww7qsD3h+uVo9FP6YBseR08/RfbveUFhZJuB11/ZFdpOl7kq+Vvvm/3vYmbyzsjBaIewDd+lq6pb5Uk1cRt8uDOjBEKN6vh6F1l2i3fiN5q/zqAS9LGAhEKTrpFMY2vYMTzA/D5D/c0Gs01n7GrMRgJwJ2SOPi+TXNF4=
Received: from GVXPR83MB0581.EURPRD83.prod.outlook.com (2603:10a6:150:15b::15) by VI2PR83MB0768.EURPRD83.prod.outlook.com (2603:10a6:800:26f::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7807.7; Wed, 31 Jul 2024 13:07:12 +0000
Received: from GVXPR83MB0581.EURPRD83.prod.outlook.com ([fe80::5977:c625:f66a:1a3b]) by GVXPR83MB0581.EURPRD83.prod.outlook.com ([fe80::5977:c625:f66a:1a3b%7]) with mapi id 15.20.7807.005; Wed, 31 Jul 2024 13:07:12 +0000
From: Arndt Schwenkschuster <arndts@microsoft.com>
To: Pieter Kasselman <pieter.kasselman=40microsoft.com@dmarc.ietf.org>, Justin Richer <jricher@mit.edu>
Thread-Topic: [EXTERNAL] [Wimse] Re: Call for Adoption: Service to Service Authentication
Thread-Index: Adrhnv6xZkPVpk51SKiuyYyOML3KbABiAcEAAAjW0vo=
Date: Wed, 31 Jul 2024 13:06:49 +0000
Message-ID: <GVXPR83MB0581E07DE5F290386B8E45B3DFB12@GVXPR83MB0581.EURPRD83.prod.outlook.com>
References: <DBAPR83MB043744C5B1AC3ECB809AE18191B72@DBAPR83MB0437.EURPRD83.prod.outlook.com> <CAPK5Dk+eP2viydw954pFODYRCfrvG-3Rf4MeqpEJXUu61Vym2g@mail.gmail.com>
In-Reply-To: <CAPK5Dk+eP2viydw954pFODYRCfrvG-3Rf4MeqpEJXUu61Vym2g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2024-07-31T13:05:55.3581153Z;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR83MB0581:EE_|VI2PR83MB0768:EE_
x-ms-office365-filtering-correlation-id: bd28a115-0c38-4387-edaa-08dcb161b148
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|4022899009|376014|366016|1800799024|69100299015|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:GVXPR83MB0581.EURPRD83.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(4022899009)(376014)(366016)(1800799024)(69100299015)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: dnr0BNCr5gdo8Jk6fiL41JSRe7XlySL9i4jrrOaD18qLioRVAq61bwAVTS0vPx15+dz5dW74OEhXoCl1OdkT4IuIeyZ35B0UCjkoW8C8uJdCR3MqYtUX/bY5NQlKByUxJFb+lo7JN8Pp9zD1Kp0OrlPZ0UZSMc54EX0iDUGft2NS1OwqavSYjLW/4fny3+goYbRVoM8msxztZJ5UjdBUvUhGUnofjnxSLg10qeIhIwvW3eh+4SkaGOlfQ3HYDJghJWHjreN5ZpqvDxc6y+e5ZV7kqW0w2kG2VN+CC0zaYJoFujtM/DwjTx/JWiZNywA5PyuYCf7WVMuABLPEC7wUz7EHVB2TAAjb5FeHqcuHszeOVJONOlaylKrisJuah/KDcYOIVRm2x4VzWEcP1CMo8hZ/hWpSzDOUdkEMgY02223CUafhIzvweGH1uKSbLYOE2UNChYTF7QGCRNj167qEC3JGGBBqqe5b3BntWy4q7AmqcOi5Pxl7ndVjHAIBOdLICBnuk4iRTsB3iefwEcLeugpnV/IBSALkufF+EPZL4EM60Kcpshe90QSlkihUptVyldOfkRO6oQ9SSRcUVLTAH2AFwf8WDE2U/mYFnAgBaPdC4Hb/THsT9bga/YSI0ONi8eWeRMrfudtMKUo3L/wwxF9gr9/PL65Pyon+QPNxOBSEwln7CKvVoAXGUHO3p6Xi1n73kU2z9rFYSTnvAz0bM3eT2kSz7H/KNv1rAkLFtGyO3TNLTthDMNVj3DtYEawxsxmTKARGRafXELg/XVHySdETjZHVA1vTpU/6sEExMqzDMk5eKPEDeTxLayINcv7493HS7CPiJD6+QXnm55Q3pbIGlRl3mWCEOYK/5tznVhQ/kYam5DLW8/0o5IEMbb9bAsjT4RgbjU4VzgMH2KTZhMQXtBanCZRFkUfQjYab9IQ/EwPbhmY1n1IO3c3UAWBZtzOGguNaJz9sUIj2vB4CVLfA41nqDsopEHMdCqEnWnZGEXUl+MpElEdXTX0NgQWoNme4ydj4ktqQFN3E7UldsG3WxkBM+IwEBZBzBYyK+asgCGlIPzd8ulpXIaBpoAfFp+AGNuWmQ1g5DiOZ0J32wcVy5tXrBB9//lkm3hs4JORhhBGd68xGjQprfu/zeQPMQICSX8uoasMqFd+8NMHPiHxJWjk0s2aaFchs2oX7uVHIjUibzd+NBUe0dE+843tThWWAkEXsLD0ZdstYJc+OSnEraZ7Oyx+fK0ykj5D7PDbe2ZMt73+sn/TITviPeqhKivWvqbYAXsM8yaIlwFjPMIMMPov2YzVYp/op91B2A9FOUKJ35ThdZUovusZ8vx5qLM0FGqqOeJ1U04OBKNgf48mROa0958gfYZHu0UAbgsqZdru8RkV7i0VtE7DEj2MKP4/sLnvwYzG6N+J1uk2oQ6UWEfSs8WbxfQypMfgijkkJNQHwvj+k4ffYJX45Cc9k5Ga0yESQzQW5ASAJhSr1BQTg/cceW6GFNIm+EWX1blYls/ALef29x1XbqaPVNRkwXIgo0JRLqoENYxdNYe72vgloYKGAubqpsy+qtxVY78ChNRRW/BRL2N0lH5rabX+P
Content-Type: multipart/alternative; boundary="_000_GVXPR83MB0581E07DE5F290386B8E45B3DFB12GVXPR83MB0581EURP_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR83MB0581.EURPRD83.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bd28a115-0c38-4387-edaa-08dcb161b148
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Jul 2024 13:07:12.3435 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: HEOw8AZbgvmQmbHoIKV5gk5GQSp0qdxdVuFc9dig5HFCjF6SUgT6qi2IB7R/rVSBovGZc4Ef0xREKJUX9jwX0w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI2PR83MB0768
Message-ID-Hash: JU2U32UF6V3C74PYNYO32MJPMEXORU34
X-Message-ID-Hash: JU2U32UF6V3C74PYNYO32MJPMEXORU34
X-MailFrom: arndts@microsoft.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "wimse@ietf.org" <wimse@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Service to Service Authentication
List-Id: WIMSE Workload Identity in Multi-Service Environment <wimse.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/wimse/I7y4Qcy5B_jJGZOEKul2dnYe9Ks>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wimse>
List-Help: <mailto:wimse-request@ietf.org?subject=help>
List-Owner: <mailto:wimse-owner@ietf.org>
List-Post: <mailto:wimse@ietf.org>
List-Subscribe: <mailto:wimse-join@ietf.org>
List-Unsubscribe: <mailto:wimse-leave@ietf.org>
I support adoption. From: Noah Stride <noah.stride=40goteleport.com@dmarc.ietf.org> Date: Wednesday, 31 July 2024 at 09:56 To: Pieter Kasselman <pieter.kasselman=40microsoft.com@dmarc.ietf.org> Cc: wimse@ietf.org <wimse@ietf.org>, Justin Richer <jricher@mit.edu> Subject: [EXTERNAL] [Wimse] Re: Call for Adoption: Service to Service Authentication You don't often get email from noah.stride=40goteleport.com@dmarc.ietf.org. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification> I support "A" Adopting the Draft On Mon, Jul 29, 2024 at 2:55 PM Pieter Kasselman <pieter.kasselman=40microsoft.com@dmarc.ietf.org<mailto:40microsoft.com@dmarc.ietf.org>> wrote: Following discussion at the working group meeting at IETF 120 in Vancouver, the chairs would like to call for adoption of WIMSE Service to Service Authentication [1] as a working group document in response to the WIMSE Securing service-to-service traffic deliverable [2]. This document was the output of the Securing service-to-service design team. In the meeting, support was fairly strong. This is an official call for adoption, please reply to the list to say that: A) You are in favour of adopting this draft. B) You are not in favour of adopting this draft (please specify why if possible). C) You need more information before making a decision (please state what more information you need). D) You don’t care about this document (i.e., this isn’t a topic you care strongly about). Please reply to the list by August 12th, 2024. Thank you, Pieter and Justin [1] https://datatracker.ietf.org/doc/draft-sheffer-wimse-s2s-protocol/ [2] https://datatracker.ietf.org/doc/charter-ietf-wimse/01/ -- Wimse mailing list -- wimse@ietf.org<mailto:wimse@ietf.org> To unsubscribe send an email to wimse-leave@ietf.org<mailto:wimse-leave@ietf.org> -- Noah Stride Machine ID Lead goteleport.com<http://goteleport.com/> [https://lh4.googleusercontent.com/PgakaC7tflvXNu_v2Swdk3Ki3fWbSaaoVjQmIEc4n3wmI7JYwi0SOFTK70fhlYJiwgOih1gCVHlQPQ4ghhFTyB3UAPrmCbB-Gl5mthTv7E-wSSctlh4Ty3SwMMmAxQJw2Yk6rPvoVfkFc2qDZRNjMbDcpUmixF9IwK82ZkwcMyM45MM4bENNlxULAyyN]
- [Wimse] Call for Adoption: Service to Service Aut… Pieter Kasselman
- [Wimse] Re: Call for Adoption: Service to Service… Flemming Andreasen (fandreas)
- [Wimse] Re: Call for Adoption: Service to Service… Dean Saxe
- [Wimse] Re: Call for Adoption: Service to Service… Noah Stride
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Dmitry Izumskiy
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Arndt Schwenkschuster
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Yaron Sheffer
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Brian Campbell
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Andrii Deinega
- [Wimse] Re: Call for Adoption: Service to Service… Avri Doria
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Joseph Salowey
- [Wimse] Re: Call for Adoption: Service to Service… McAdams, Darin