- From: Mark Nottingham <mnot@mnot.net>
- Date: Thu, 9 Jan 2020 15:33:14 +1100
- To: HTTP Working Group <ietf-http-wg@w3.org>
- Cc: Tommy Pauly <tpauly@apple.com>
Hello everyone, We've discussed mechanisms for signing HTTP messages for some time. At IETF106, this draft was presented in the SECDISPATCH Working Group: https://tools.ietf.org/html/draft-richanna-http-message-signatures-00 See also the presentation given there: https://datatracker.ietf.org/meeting/106/materials/slides-106-secdispatch-http-signing In discussion there (and with the relevant ADs), it was felt that the most obvious place for this work to land in the IETF would be in this WG. So, while this specific draft has not been discussed extensively here, we have expressed interest in this topic for quite some time, and it seems appropriate to see if we're willing to take it on. To that end, this is a Call for Adoption of draft-richanna-http-message-signatures-00. Since there hasn't been extensive discussion yet, we're looking for more confirmation than just absence of objection; we'd like folks to read the document and state explicitly whether they support it as a starting point for a work item. As with all of our drafts, it will only be a starting point; we're not looking for consensus to publish this draft as-is, just confirmation that this is an area we want to start work in. In particular, if folks could state whether they're willing to contribute to discussion and review drafts, that would be helpful. To give time to read and consider the draft, this CfA will be for a longer than usual period; we'll make a decision no earlier than 31 January. Cheers, P.S. As a reminder, this isn't a call to start discussing specific issues in the draft; we'll have plenty of time for that later. -- Mark Nottingham https://www.mnot.net/
Received on Thursday, 9 January 2020 04:33:27 UTC