Re: [Ace] Opsdir telechat review of draft-ietf-ace-cbor-web-token-12

[Mike Jones]

Thanks for taking the time to review the specification, Carlos.  You are now 
listed in the acknowledgements at 
https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-13#appendix-B.

-- Mike

-Original Message-
From: Carlos Martinez  
Sent: Friday, March 2, 2018 12:06 PM
To: ops-...@ietf.org
Cc: ace@ietf.org; i...@ietf.org; draft-ietf-ace-cbor-web-token@ietf.org
Subject: Opsdir telechat review of draft-ietf-ace-cbor-web-token-12

Reviewer: Carlos Martinez
Review result: Ready

Reviewer: Carlos Martínez
Review Result: Ready

I have reviewed this document as part of the Operational directorate's ongoing 
effort to review all IETF documents being processed by the IESG.  These 
comments were written with the intent of improving the operational aspects of 
the IETF drafts. Comments that are not addressed in last call may be included 
in AD reviews during the IESG review.  Document editors and WG chairs should 
treat these comments just like any other last call comments.

I found the document easy to read. The specification is clear and examples in 
Appendix C are of real help for us who are not experts in the area.

I believe the document to be ready.

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

Re: [Ace] AD Review of draft-ietf-ace-cbor-web-token-12

[Mike Jones]

You'll find the requested change in the second paragraph of 
https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-13#section-9.1 and 
the Claim Key description in 
https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-13#section-9.1.1.

Thanks again,
-- Mike

-Original Message-
From: Ace  On Behalf Of Mike Jones
Sent: Friday, February 16, 2018 2:21 PM
To: Kathleen Moriarty 
Cc: ace@ietf.org
Subject: Re: [Ace] AD Review of draft-ietf-ace-cbor-web-token-12

Be glad to.  I'll add it to my to-do list for this draft.

-- Mike

-Original Message-
From: Kathleen Moriarty  
Sent: Friday, February 16, 2018 1:17 PM
To: Mike Jones 
Cc: ace@ietf.org
Subject: Re: [Ace] AD Review of draft-ietf-ace-cbor-web-token-12

On Fri, Feb 16, 2018 at 3:46 PM, Mike Jones  wrote:
> This information is in the registration template at 
> https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-12#section-9.1.1, 
> as follows:
>

OK, could you clarify that in the IANA section with a simple pointer to the 
registration template?

This update can come with any other IETF last call comments.

Thank you!
Kathleen

>Claim Key:
>   CBOR map key for the claim.  Integer values between -256 and 255
>   and strings of length 1 are designated as Standards Track
>   Required.  Integer values from -65536 to 65535 and strings of
>   length 2 are designated as Specification Required.  Integer values
>   of greater than 65535 and strings of length greater than 2 are
>   designated as Expert Review.  Integer values less than -65536 are
>   marked as Private Use.
>
> Thanks again,
> -- Mike
>
> -Original Message-
> From: Ace  On Behalf Of Kathleen Moriarty
> Sent: Friday, February 16, 2018 12:42 PM
> To: ace@ietf.org
> Subject: [Ace] AD Review of draft-ietf-ace-cbor-web-token-12
>
> Hello,
>
> Thanks for your work on draft-ietf-ace-cbor-web-token-12
>
> The draft looks good and I'll kick off IETF last call today, but have an 
> important question that may require clarification in the draft.
>
> In the IANA section 9.1, how does one know which document type is needed?  
> Could you add text about how one might differentiate the values to drive that 
> decision?
>
>Depending upon the values being requested, registration requests are
>evaluated on a Standards Track Required, Specification Required,
>Expert Review, or Private Use basis [RFC8126] after a three-week
>review period on the cwt-reg-rev...@ietf.org mailing list, on the
>advice of one or more Designated Experts.
>
>
> --
>
> Best regards,
> Kathleen
>
> ___
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace



-- 

Best regards,
Kathleen
___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

Re: [Ace] CBOR Web Token (CWT) draft addressing IETF last call comments

[Benjamin Kaduk]

Hi Mike,

Thanks for these updates!

-Ben

On Mon, Mar 05, 2018 at 09:33:51PM +, Mike Jones wrote:
> The CBOR Web Token (CWT) specification has been updated to address IETF last 
> call comments received to date, including GenArt, SecDir, Area Director, and 
> additional shepherd comments.  Changes were:
> 
>   *   Clarified the registration criteria applied to different ranges of 
> Claim Key values, as suggested by Kathleen Moriarty and Dan Romascanu.
>   *   No longer describe the syntax of CWT claims as being the same as that 
> of the corresponding JWT claims, as suggested by Kyle Rose.
>   *   Added guidance about the selection of the Designated Experts, as 
> suggested by Benjamin Kaduk.
>   *   Acknowledged additional reviewers.
> 
> The specification is available at:
> 
>   *   https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-13
> 
> An HTML-formatted version is also available at:
> 
>   *   http://self-issued.info/docs/draft-ietf-ace-cbor-web-token-13.html
> 
> -- Mike
> 
> P.S.  This notice was also posted at http://self-issued.info/?p=1789 and as 
> @selfissued.
> 

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

[Ace] CBOR Web Token (CWT) draft addressing IETF last call comments

[Mike Jones]

The CBOR Web Token (CWT) specification has been updated to address IETF last 
call comments received to date, including GenArt, SecDir, Area Director, and 
additional shepherd comments.  Changes were:

  *   Clarified the registration criteria applied to different ranges of Claim 
Key values, as suggested by Kathleen Moriarty and Dan Romascanu.
  *   No longer describe the syntax of CWT claims as being the same as that of 
the corresponding JWT claims, as suggested by Kyle Rose.
  *   Added guidance about the selection of the Designated Experts, as 
suggested by Benjamin Kaduk.
  *   Acknowledged additional reviewers.

The specification is available at:

  *   https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-13

An HTML-formatted version is also available at:

  *   http://self-issued.info/docs/draft-ietf-ace-cbor-web-token-13.html

-- Mike

P.S.  This notice was also posted at http://self-issued.info/?p=1789 and as 
@selfissued.

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

[Ace] I-D Action: draft-ietf-ace-dtls-authorize-03.txt

[internet-drafts]

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for 
Constrained Environments WG of the IETF.

Title   : Datagram Transport Layer Security (DTLS) Profile for 
Authentication and Authorization for Constrained Environments (ACE)
Authors : Stefanie Gerdes
  Olaf Bergmann
  Carsten Bormann
  Göran Selander
  Ludwig Seitz
Filename: draft-ietf-ace-dtls-authorize-03.txt
Pages   : 19
Date: 2018-03-05

Abstract:
   This specification defines a profile for delegating client
   authentication and authorization in a constrained environment by
   establishing a Datagram Transport Layer Security (DTLS) channel
   between resource-constrained nodes.  The protocol relies on DTLS for
   communication security between entities in a constrained network
   using either raw public keys or pre-shared keys.  A resource-
   constrained node can use this protocol to delegate management of
   authorization information to a trusted host with less severe
   limitations regarding processing power and memory.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-dtls-authorize/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-ace-dtls-authorize-03
https://datatracker.ietf.org/doc/html/draft-ietf-ace-dtls-authorize-03

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-dtls-authorize-03


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

Re: [Ace] Agenda Items for London

[Marco Tiloca]

Hello,

I would like to request 10 minutes to present updates and get feedback
for the draft:

https://tools.ietf.org/html/draft-tiloca-ace-oscoap-joining-03

I will be the presenter. If it is possible, I would like this slot to be
after the one for draft-palombini-ace-key-groupcomm

Thanks,
/Marco

On 2018-02-28 01:33, Jim Schaad wrote:
> Please let the chairs know if you want a slot on the agenda for London.
> Please give us an idea of what you think you need to cover, how long you
> think it will take and who is doing the presentations.
>
> For people doing the presentations, I would like to get slides during the
> week of March 12th so that the chairs can do a fast review and get them
> posted before the Monday morning meeting.  I really do not want to need to
> do this first thing Monday morning.
>
> Jim
>
>
> ___
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace

-- 
Marco Tiloca, PhD
Research Institutes of Sweden
RISE ICT/SICS
Isafjordsgatan 22 / Kistagången 16
SE-164 40 Kista (Sweden)
Phone: +46 (0)70 60 46 501
https://www.sics.se

The RISE institutes Innventia, SP and Swedish ICT
have merged in order to become a stronger research
and innovation partner for businesses and society.
SICS Swedish ICT AB, has now changed name to RISE SICS AB.




signature.asc
Description: OpenPGP digital signature
___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

[Ace] Fwd: New Version Notification for draft-tiloca-ace-oscoap-joining-03.txt

[Marco Tiloca]

Hi all,

We have just submitted a new version of the document describing how to
join OSCORE groups using the ACE framework:

https://tools.ietf.org/html/draft-tiloca-ace-oscoap-joining-03


In particular, this updated version complies with the new general draft
covering key provisioning for group communication using ACE:

https://tools.ietf.org/html/draft-palombini-ace-key-groupcomm-00


Best,
/Marco


 Forwarded Message 
Subject:New Version Notification for
draft-tiloca-ace-oscoap-joining-03.txt
Date:   Mon, 5 Mar 2018 07:11:15 -0800
From:   internet-dra...@ietf.org
To: Marco Tiloca , Jiye Park 



A new version of I-D, draft-tiloca-ace-oscoap-joining-03.txt
has been successfully submitted by Marco Tiloca and posted to the
IETF repository.

Name:   draft-tiloca-ace-oscoap-joining
Revision:   03
Title:  Joining OSCORE groups in ACE
Document date:  2018-03-05
Group:  Individual Submission
Pages:  14
URL:
https://www.ietf.org/internet-drafts/draft-tiloca-ace-oscoap-joining-03.txt
Status: 
https://datatracker.ietf.org/doc/draft-tiloca-ace-oscoap-joining/
Htmlized:   https://tools.ietf.org/html/draft-tiloca-ace-oscoap-joining-03
Htmlized:   
https://datatracker.ietf.org/doc/html/draft-tiloca-ace-oscoap-joining-03
Diff:   
https://www.ietf.org/rfcdiff?url2=draft-tiloca-ace-oscoap-joining-03

Abstract:
   This document describes a method to join a group where communications
   are based on CoAP and secured with Object Security for Constrained
   RESTful Environments (OSCORE).  The proposed method delegates the
   authentication and authorization of client nodes that join an OSCORE
   group through a Group Manager server.  This approach builds on the
   ACE framework for Authentication and Authorization, and leverages
   protocol-specific profiles of ACE to achieve communication security,
   proof-of-possession and server authentication.


  


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat





signature.asc
Description: OpenPGP digital signature
___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

[Ace] I-D Action: draft-ietf-ace-oscore-profile-01.txt

[internet-drafts]

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for 
Constrained Environments WG of the IETF.

Title   : OSCORE profile of the Authentication and 
Authorization for Constrained Environments Framework
Authors : Ludwig Seitz
  Francesca Palombini
  Martin Gunnarsson
  Goeran Selander
Filename: draft-ietf-ace-oscore-profile-01.txt
Pages   : 17
Date: 2018-03-05

Abstract:
   This memo specifies a profile for the Authentication and
   Authorization for Constrained Environments (ACE) framework.  It
   utilizes Object Security for Constrained RESTful Environments
   (OSCORE) to provide communication security, server authentication,
   and proof-of-possession for a key owned by the client and bound to an
   OAuth 2.0 access token.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-oscore-profile/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-ace-oscore-profile-01
https://datatracker.ietf.org/doc/html/draft-ietf-ace-oscore-profile-01

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-oscore-profile-01


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace