[OpenID-specs-EAP] Regrets for today's call (was: EAP Call Notes 7-Jun-18)

Mike Jones Michael.Jones at microsoft.com
Thu Jun 21 14:40:51 UTC 2018 

Thanks, Brian.  Let’s cancel this call then.

From: Brian Campbell <bcampbell at pingidentity.com>
Sent: Thursday, June 21, 2018 5:47 AM
To: Mike Jones <Michael.Jones at microsoft.com>
Cc: openid-specs-eap at lists.openid.net
Subject: Regrets for today's call (was: EAP Call Notes 7-Jun-18)

I've got a conflict and won't be able to make the call today.

The two pull requests (linked below) to the OpenID Connect Token Bound Authentication draft are the only outstanding issues I would have had on my agenda for the call.

On Thu, Jun 7, 2018 at 12:24 PM, Mike Jones via Openid-specs-eap <openid-specs-eap at lists.openid.net<mailto:openid-specs-eap at lists.openid.net>> wrote:
EAP Call Notes 7-Jun-18

Brian Campbell
Mike Jones
Bjorn Hjelm

Brian created two PRs for the Token Binding spec
              https://bitbucket.org/openid/eap/pull-requests/5
              https://bitbucket.org/openid/eap/pull-requests/4/be-explicit-that-the-base64url-encoding-of/diff
              Mike will review these

Brian will look at whether parallel changes need to be made to the OAuth Token Binding specs

We should take this to Implementer's Draft status when the IETF specs finish

Token Binding with endpoints behind firewalls
              Bjorn reports that Michael Engan at T-Mobile raised issues about when the endpoints are behind firewalls
              Mike believes that Brian's Token Binding TLS Termination spec covers this use case
              https://tools.ietf.org/html/draft-ietf-tokbind-ttrp-04
              Bjorn will talk with Michael about this possibility

Java changes for Token Binding
              Brian's mods to Java are public
                           https://github.com/pingidentity/java8-token-binding-negotiation
                           https://github.com/pingidentity/java9-token-binding-negotiation
                           https://github.com/pingidentity/java10-token-binding-negotiation
                           They are licensed consistently with the Java license
              Brian's utility library is also available but needs more documentation
                           https://github.com/pingidentity/token-binding-java
                           It uses the Apache 2.0 license

_______________________________________________
Openid-specs-eap mailing list
Openid-specs-eap at lists.openid.net<mailto:Openid-specs-eap at lists.openid.net>
http://lists.openid.net/mailman/listinfo/openid-specs-eap


CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-eap/attachments/20180621/03b7d40b/attachment-0001.html>

More information about the Openid-specs-eap mailing list