[Wimse] Call for Adoption: Service to Service Authentication
Pieter Kasselman <pieter.kasselman@microsoft.com> Mon, 29 July 2024 13:54 UTC
Return-Path: <pieter.kasselman@microsoft.com>
X-Original-To: wimse@ietfa.amsl.com
Delivered-To: wimse@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E2B0C169425 for <wimse@ietfa.amsl.com>; Mon, 29 Jul 2024 06:54:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.254
X-Spam-Level:
X-Spam-Status: No, score=-2.254 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wE4UMjv1NEGL for <wimse@ietfa.amsl.com>; Mon, 29 Jul 2024 06:54:12 -0700 (PDT)
Received: from EUR03-VI1-obe.outbound.protection.outlook.com (mail-vi1eur03on2096.outbound.protection.outlook.com [40.107.103.96]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9401FC17C8A9 for <wimse@ietf.org>; Mon, 29 Jul 2024 06:54:12 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=FYf//gw1EXb7BkCRXGOTtQ83nnxYscTw0y7dsB6IJupHpEZSglwixmYEDD4RRKPKjtssaj/DgYJqjjC/lfrRyZOd2L6g+4qa4kH8gH23Dg9ufuyS89KtPVgJh9PYbxaF+2AEGbZib89jqVnwaadweq2O1HUiJEiZJ2dLP6g/FxQHdIfHs7oUZv0f6t3MNtgxIZuSoxIkQ5xBJKjmS+lOiPQA3KeL9oOlSMJM0k/5Pjs8FP7rDE9cCh0zq9gFZyPBG/zS2WOXY4VIDuAUYBBdqcnL85MRy02LPWD9YFlVKpMX+t2mONCPbFNP6ql2KG9iImP+suiFvTcYfIj5VVq8oQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=R0Dz1VvXGfwyK1/aAwcigTSEckQN2rZgNCPRCLUoeYU=; b=ELUysN5jaHVL+YutIf+48nb4bxbs1p7AE8AnBbKYbI1q7pHBSGN2nl3mbW/mE4IPVZs7qLa55tSaIhgocO1+Dir15y2qC2Cb0BeGn39yTWWgyyAjSG0XDcJydcAmgLDKFaawGE8Ys5DJF1Gu3IZ+ef8kzJx+J1v+Pk65W3KIqAMIYMG9v4T6xp/fRRBXjbYiOvisTivhyrG/n5wlpaODme1miX6Aw/FKSVO6di5NCla8KxdDX6tJVn5grgY2Zzk4J+mkPnfR/wpDhFDBH9nW4s+HFLVMSosa0Xp5NvO189MLVHyVbYXo9pf1higk4/QDDuzsI7sZED5WNcGcRWz79g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R0Dz1VvXGfwyK1/aAwcigTSEckQN2rZgNCPRCLUoeYU=; b=bng3RxDZnHEYiFHUAPeNaf/pF6yos8SIYkC6raVIDscMZba/n1KESEbLE86Mn0dGo/4ZvMSRvDQF2oiU1sSmTOYWb4y64R49H9P0ofpxMPpVTeGFw2FvU+xSMA7Aomo0emg8WuNhhEB7ZWy2l9PAoxsayJJdP8V5hYKBFvYcd+w=
Received: from DBAPR83MB0437.EURPRD83.prod.outlook.com (2603:10a6:10:19e::6) by PA1PR83MB0750.EURPRD83.prod.outlook.com (2603:10a6:102:48c::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7807.4; Mon, 29 Jul 2024 10:19:04 +0000
Received: from DBAPR83MB0437.EURPRD83.prod.outlook.com ([fe80::9ee1:305:cfd7:dded]) by DBAPR83MB0437.EURPRD83.prod.outlook.com ([fe80::9ee1:305:cfd7:dded%3]) with mapi id 15.20.7807.005; Mon, 29 Jul 2024 10:19:04 +0000
From: Pieter Kasselman <pieter.kasselman@microsoft.com>
To: "wimse@ietf.org" <wimse@ietf.org>, Justin Richer <jricher@mit.edu>
Thread-Topic: Call for Adoption: Service to Service Authentication
Thread-Index: Adrhnv6xZkPVpk51SKiuyYyOML3KbA==
Date: Mon, 29 Jul 2024 10:19:04 +0000
Message-ID: <DBAPR83MB043744C5B1AC3ECB809AE18191B72@DBAPR83MB0437.EURPRD83.prod.outlook.com>
Accept-Language: en-IE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=8e5e3e63-e248-4687-bb33-20acea8c0eb3;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2024-07-29T10:06:19Z;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DBAPR83MB0437:EE_|PA1PR83MB0750:EE_
x-ms-office365-filtering-correlation-id: c73845a0-662c-401d-077a-08dcafb7dfce
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|366016|376014|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DBAPR83MB0437.EURPRD83.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DBAPR83MB043744C5B1AC3ECB809AE18191B72DBAPR83MB0437EURP_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DBAPR83MB0437.EURPRD83.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c73845a0-662c-401d-077a-08dcafb7dfce
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jul 2024 10:19:04.8450 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MtDdEI46qgXDyUjKNcopOJ9w3sgIjZopRuiTsg2qtcJl0DxptLGhW9+IMvRMfpoO1PjRnQoKIq/e3Qwst0majnHrv+u5M3nzHuUIFgm4NSk=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PA1PR83MB0750
Message-ID-Hash: V45ZMBM4M4PZ7ZRTFAP4NLPJBMBHDKLJ
X-Message-ID-Hash: V45ZMBM4M4PZ7ZRTFAP4NLPJBMBHDKLJ
X-MailFrom: pieter.kasselman@microsoft.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Wimse] Call for Adoption: Service to Service Authentication
List-Id: WIMSE Workload Identity in Multi-Service Environment <wimse.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/wimse/IqKiUVTTslVzUwIjxqjJ39M37I0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wimse>
List-Help: <mailto:wimse-request@ietf.org?subject=help>
List-Owner: <mailto:wimse-owner@ietf.org>
List-Post: <mailto:wimse@ietf.org>
List-Subscribe: <mailto:wimse-join@ietf.org>
List-Unsubscribe: <mailto:wimse-leave@ietf.org>
Following discussion at the working group meeting at IETF 120 in Vancouver, the chairs would like to call for adoption of WIMSE Service to Service Authentication [1] as a working group document in response to the WIMSE Securing service-to-service traffic deliverable [2]. This document was the output of the Securing service-to-service design team. In the meeting, support was fairly strong. This is an official call for adoption, please reply to the list to say that: A) You are in favour of adopting this draft. B) You are not in favour of adopting this draft (please specify why if possible). C) You need more information before making a decision (please state what more information you need). D) You don't care about this document (i.e., this isn't a topic you care strongly about). Please reply to the list by August 12th, 2024. Thank you, Pieter and Justin [1] https://datatracker.ietf.org/doc/draft-sheffer-wimse-s2s-protocol/ [2] https://datatracker.ietf.org/doc/charter-ietf-wimse/01/
- [Wimse] Call for Adoption: Service to Service Aut… Pieter Kasselman
- [Wimse] Re: Call for Adoption: Service to Service… Flemming Andreasen (fandreas)
- [Wimse] Re: Call for Adoption: Service to Service… Dean Saxe
- [Wimse] Re: Call for Adoption: Service to Service… Noah Stride
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Dmitry Izumskiy
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Arndt Schwenkschuster
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Yaron Sheffer
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Brian Campbell
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Andrii Deinega
- [Wimse] Re: Call for Adoption: Service to Service… Avri Doria
- [Wimse] Re: [EXTERNAL] Re: Call for Adoption: Ser… Joseph Salowey
- [Wimse] Re: Call for Adoption: Service to Service… McAdams, Darin