Re: [OAUTH-WG] [apps-discuss] FW: Appsdir review of draft-ietf-oauth-v2-23

with Michelle @ IANA I can help coordinate a meeting in Paris next week (assuming you are attending). ht -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

[OAUTH-WG] OAUTH Report for IETF-83

and feedback. Our goal is to send it to the IESG for approval on their April 26th telechat. This would hopefully result in approval on the May 10th chat, after public comment. We finished the meeting at 14h30. -- Derek Atkins 617-623-3745 de...@ihtfp.com

Re: [OAUTH-WG] OAUTH Report for IETF-83

Report for IETF-83 To: William Mills wmi...@yahoo-inc.com, Derek Atkins de...@ihtfp.com, s...@ietf.org s...@ietf.org, oauth@ietf.org oauth@ietf.org ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] OAUTH Report for IETF-83

: [OAUTH-WG] OAUTH Report for IETF-83 To: Eran Hammer e...@hueniverse.com, Derek Atkins de...@ihtfp.com, s...@ietf.org s...@ietf.org, oauth@ietf.org oauth@ietf.org ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] Meeting Minutes - IETF#83

and let us know if there is something missing: http://www.ietf.org/proceedings/83/minutes/minutes-83-oauth.txt Ciao Hannes Derek ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins

Re: [OAUTH-WG] Updated Charter to the IESG (this weekend)

items onto the plate, theoretically. -- Justin -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https

Re: [OAUTH-WG] [apps-discuss] Web Finger vs. Simple Web Discovery (SWD)

. Play ball! -MSK ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security

Re: [OAUTH-WG] Dynamic Client Registration

, the WG may choose to delay work on this document until ready. I don't feel that this is explicitly required, but I have no objection to making it clearer in the charter that the DCR is dependent on Discovery. Hannes? EH -derek -- Derek Atkins 617-623-3745 de

Re: [OAUTH-WG] [apps-discuss] Web Finger vs. Simple Web Discovery (SWD)

reasonable and generally acceptable to have a server that provides data in multiple formats whereas the client only supports a subset and specifies which format(s) are acceptable. /OAUTH Char Hat -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com

Re: [OAUTH-WG] [apps-discuss] Web Finger vs. Simple Web Discovery (SWD)

. Mike -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] [apps-discuss] Web Finger vs. Simple Web Discovery (SWD)

application using just JSON. It doesn't have to worry about receiving XML, because it will always get JSON. As for your abstract model issue.. Maybe Mike was right and we SHOULD use ASN.1! :-D Then we could have defined encodings to XML or JSON ;) -Tim -derek -- Derek Atkins

Re: [OAUTH-WG] [apps-discuss] Web Finger vs. Simple Web Discovery (SWD)

Michael Thomas m...@mtcc.com writes: Derek Atkins wrote: Michael Thomas m...@mtcc.com writes: Why not MUST ASN.1 while you're at it? JSON has won in case you'all haven't noticed it. Well, now that you mention it... ;-) But seriously, we're basing this work on an RFC that was just

Re: [OAUTH-WG] Shepherd review of draft-ietf-oauth-v2-threatmodel

. Thank you, Eran. EH -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman

Re: [OAUTH-WG] FYI - Text resolving DISCUSS issue about Bearer URI Query Parameter method

feedback on this (it has been mentioned during IETF LC multiple times). Best regards, Julian -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

[OAUTH-WG] On the OAuth Core Spec

)? Thanks, and again, our apologies, -derek, co-chair -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https

Re: [OAUTH-WG] Oauth 2 and discovery

should just write up a separate draft that has the IANA registry items and other ancillary data necessary. It could probably go through as an informational draft, too, and possibly even an individual submission. -bill -derek -- Derek Atkins 617-623-3745 de

Re: [OAUTH-WG] Meeting slot for the Vancouver IETF meeting requested

___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

[OAUTH-WG] Remote Participation for Vancouver (was Re: Meeting slot for the Vancouver IETF meeting requested)

in. -derek Torsten Lodderstedt tors...@lodderstedt.net writes: Hi Derek, I will give it a try. Where can I find the respective meeting data? regards, Torsten. Am 30.07.2012 19:55, schrieb Derek Atkins: We will have a WebEx available if you can attend remotely? That's my plan, as I cannot

Re: [OAUTH-WG] A question on draft-ietf-oauth-v2-http-mac-01

-derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] 答复: Re: A question on draft-ietf-oauth-v2-http-mac-01

back to the AS during that period. Otherwise the AS becomes a single point of failure and a bottleneck. -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

Re: [OAUTH-WG] 答复: Re: 答复: Re: A question on draft-ietf-oauth-v2-http-mac-01

. Therefore your statement above is invalid. -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org

[OAUTH-WG] More reviewers of the OAuth Security draft?

Hi, This is a request for more reviews of the OAuth Security Draft. You can find it at http://datatracker.ietf.org/doc/draft-tschofenig-oauth-security/ Thanks! -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer

Re: [OAUTH-WG] [Editorial Errata Reported] RFC6749 (3446)

to their won't help that. I suggest editing the corrected text to by changing the resource owner's password before marking this as Verified. Yep, I suggested that same change in a private email to Stephen, so I would prefer this modification. Barry -derek -- Derek Atkins

Re: [OAUTH-WG] Last call review of draft-ietf-oauth-dyn-reg-10

, either side should be able to rotate keys. It should not be only one side's choice; either side should have the option to refresh due to local policy (or worse, local knowledge of an issue). -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com

Re: [OAUTH-WG] Client Instances of An Application - Was: Re: Last call review of draft-ietf-oauth-dyn-reg-10

of a client gets its own ID and a locally-stored secret. -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org

Re: [OAUTH-WG] Protocol Action: 'OAuth 2.0 Token Revocation' to Proposed Standard (draft-ietf-oauth-revocation-11.txt)

/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

Re: [OAUTH-WG] Current Progress in use case document?

https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org

[OAUTH-WG] OAuth Agenda for IETF-88

* draft-richer-oauth-dyn-reg-management * ... -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https

Re: [OAUTH-WG] OAuth Agenda for IETF-88

Just a clarification: if you are making a status update slides are NOT required. The slide info was if you WERE planning to make slides. Sorry for any confusion. See you Monday! -derek On Thu, October 31, 2013 4:07 pm, Derek Atkins wrote: The IETF is next week, and OAuth meets Monday

Re: [OAUTH-WG] OAuth Agenda for IETF-88

Yes, that is the main topic of discussion. -derek Sent from my HTC smartphone - Reply message - From: Anthony Nadalin tony...@microsoft.com To: Derek Atkins de...@ihtfp.com, oauth@ietf.org oauth@ietf.org Subject: [OAUTH-WG] OAuth Agenda for IETF-88 Date: Thu, Oct 31, 2013 7:21 PM

Re: [OAUTH-WG] IETF WG Follow-up

___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing

[OAUTH-WG] Draft Minutes from IETF-88

NOTE: Please let me know if you find any issues with the minutes; I'll upload a final version with any necessary changes. -derek OAUTH WG - IETF 88 PARTICIPANTS * Anthony Nadlin (AN) * Brian Campbell (BN) * Derek Atkins (DA) * John Bradley (JB) * Justin Richer (JR) * Mike Jones

Re: [OAUTH-WG] Thurs tap and barrel

. Suggest we meet for 6:30 at hotel lobby. Phil ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer

[OAUTH-WG] Request for Agenda Items for IETF-89

have other issues that require dedicated time, please let me know too! Thanks, -derek, OAuth co-chair -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

Re: [OAUTH-WG] Fwd: Tutorials (OAuth, Kerberos, PKI) for ACE BOF Preparation

/oauth___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

[OAUTH-WG] OAUTH Presentation Slides

Hi, If you have a slot to speak tomorrow and are using slides please make sure to send the slides to Hannes and I, preferably in PDF format. This way I can upload them before the meeting tomorrow morning. Thanks! -derek -- Derek Atkins 617-623-3745 de

Re: [OAUTH-WG] Question lengths in draft-sakimura-oauth-tcse-03

@ietf.org https://www.ietf.org/mailman/listinfo/oauth -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/PP-ASEL-IA N1NWH warl...@mit.eduPGP

[OAUTH-WG] Call for Agenda Items for IETF-92

HI, IETF-92 in Dallas is 50-some days away. If you feel you want agenda time to talk about a draft or topic please get your requests into the chairs. Thanks, -derek and hannes -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer

[OAUTH-WG] Request for slides for WG meeting

Hi, Can all speakers please send us your slides for the OAuth meeting. I'd prefer to receive them in PDF format. Please send them ASAP (and before lunch tomorrow). Thanks, -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com

[OAUTH-WG] WGLC for draft-ietf-oauth-proof-of-possession-01

. See you there! -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth

[OAUTH-WG] [Fwd: IPR Disclosure Kirsten Aldrich's Statement about IPR related to RFC 6749]

of the IPR disclosure is Kirsten Aldrich's Statement about IPR related to RFC 6749 Thank you IETF Secretariat -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant

[OAUTH-WG] [Fwd: oauth - Requested session has been scheduled for IETF 92]

. - -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https

[OAUTH-WG] Review of draft-ietf-oauth-pop-architecture

provide a pointer to the protections then, too. -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant ___ OAuth mailing list OAuth@ietf.org https

Re: [OAUTH-WG] Chair volunteers

lty. I do plan to continue my involvement to the best of my ability. I encourage people to step up and volunteer to co-chair the group. > Ciao > Hannes -derek -- Derek Atkins 617-623-3745 de...@ihtfp.com www.ihtfp.com Compu