[doseta-discuss] HTTP use cases for DOSETA
Dave CROCKER
dhc at dcrocker.net
Thu Apr 28 21:08:39 PDT 2011
On 4/28/2011 7:57 PM, Mark Nottingham wrote:
> One other use case. In some circumstances it'd be nice to sign *part* of a header value; e.g., if I have
>
> Forwarded-For: a.b.c.d
>
> and I'm an intermediary who wants to append to it, so we get:
>
> Forwarded-For: a.b.c.d, e.f.g.h
>
> and sign *just* the e.f.g.h part.
>
> I'm not sure if this is a use case for DOSETA, or a separate mechanism.
Sheesh. You don't want much, do you? Do you want to cover the top half of the
bits or the bottom...? (Humor notwithstanding, DOSETA per se can add whatever
hashing and/or subsetting you want to specify, as long as there's a market for
it. I think this particular example could be a bit challenging, but what the
heck, it keeps things interesting.
Anyhow, I really liked your previous posting.
Note that the latest addition to the Doseta spec includes that ability to assert
a set of 'claims':
<http://datatracker.ietf.org/doc/draft-crocker-doseta-base/?include_text=1>
The claims put into the initial version of the registry probably cover a number
of the cases you have in mind.
Feel free to suggest text for other claims to add to the registry...
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
More information about the doseta-discuss
mailing list