Re: [xmpp] Fwd: [POSH] What's the point of using JWKs in POSH?

Kim Alvefur <zash@zash.se> Sun, 08 June 2014 11:41 UTC

Return-Path: <zash@zash.se>
X-Original-To: xmpp@ietfa.amsl.com
Delivered-To: xmpp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 435D91A03A4 for <xmpp@ietfa.amsl.com>; Sun, 8 Jun 2014 04:41:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.202
X-Spam-Level:
X-Spam-Status: No, score=-2.202 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PFJ0IK7smmAE for <xmpp@ietfa.amsl.com>; Sun, 8 Jun 2014 04:41:00 -0700 (PDT)
Received: from mail.zash.se (sphyrna.zash.se [IPv6:2001:470:28:559::]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 927141A03A3 for <xmpp@ietf.org>; Sun, 8 Jun 2014 04:40:59 -0700 (PDT)
Received: from [77.110.10.237] (ip3-237.bon.riksnet.se [77.110.10.237]) (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: zash) by mail.zash.se (Postfix) with ESMTPSA id 59ADD601F1 for <xmpp@ietf.org>; Sun, 8 Jun 2014 13:40:49 +0200 (CEST)
Message-ID: <53944BC0.1030300@zash.se>
Date: Sun, 08 Jun 2014 13:40:48 +0200
From: Kim Alvefur <zash@zash.se>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: xmpp@ietf.org
References: <B840DF08-6478-41AC-8894-51B0524ED622@thijsalkema.de> <538F9B0D.1030504@cisco.com> <538FA1BD.1070508@cisco.com>
In-Reply-To: <538FA1BD.1070508@cisco.com>
X-Enigmail-Version: 1.6
OpenPGP: id=B67AD329; url=http://zash.se/~zash/pubkey.asc
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="HiXlv8x4EhFo3w9S44emxaQa9Qf6BJbkS"
Archived-At: http://mailarchive.ietf.org/arch/msg/xmpp/42Y4FW9BWZlbrHaA1Wn44Mewsp4
Subject: Re: [xmpp] Fwd: [POSH] What's the point of using JWKs in POSH?
X-BeenThere: xmpp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: XMPP Working Group <xmpp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/xmpp>, <mailto:xmpp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xmpp/>
List-Post: <mailto:xmpp@ietf.org>
List-Help: <mailto:xmpp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xmpp>, <mailto:xmpp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Jun 2014 11:41:03 -0000

On 2014-06-05 00:46, Matt Miller wrote:
> Each "fingerprint" is a JSON object, where the key is the hash
> algorithm and the value is the base64 encoding of hashing the
> DER-encoded certificate with the given algorithm.  I do think that
> algorithm agility is necessary, which means something more than a
> simple array in my opinion.  Generating this should be very simple; I
> could kludge this together on the command-line pretty quickly
> 
> If the WG is ok with this, we can get a new revision of
> draft-ietf-xmpp-posh out relatively soon (by next week).

I'm ok with this.

--
Kim "Zash" Alvefur