From eb1e9747b03055ea3d53886bfd086eb02b0dbdc3 Mon Sep 17 00:00:00 2001 From: Christian Bormann Date: Tue, 11 Nov 2025 09:52:13 +0100 Subject: [PATCH 1/6] add asn.1 module --- draft-ietf-oauth-status-list.md | 43 +++++++++++++++++++++++++++++++-- 1 file changed, 41 insertions(+), 2 deletions(-) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index 1f64a6f..db8c269 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -86,6 +86,16 @@ normative: org: "WHATWG" title: "Fetch Living Standard" target: "https://fetch.spec.whatwg.org/commit-snapshots/4775fcb48042c8411df497c0b7cf167b4240004f/#http-cors-protocol" + X.680: + title: "Information Technology - Abstract Syntax Notation One (ASN.1): Specification of basic notation" + author: + org: International Telecommunications Union + date: "02/2021" + X.690: + title: "Information Technology - ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER)" + author: + org: International Telecommunications Union + date: "02/2021" informative: RFC6749: RFC6749 @@ -916,7 +926,7 @@ The following OID is defined for usage in the EKU extension ~~~ id-kp OBJECT IDENTIFIER ::= { iso(1) identified-organization(3) dod(6) internet(1) - security(5) mechanisms(5) pkix(7) 3 } + security(5) mechanisms(5) pkix(7) kp(3) } id-kp-oauthStatusSigning OBJECT IDENTIFIER ::= { id-kp TBD } ~~~ @@ -1482,7 +1492,36 @@ RESTful Environments (CoRE) Parameters" Registry [IANA.Core.Params]: ## X.509 Certificate Extended Key Purpose OID Registration -IANA is also requested to register the following OID "1.3.6.1.5.5.7.3.TBD" in the "SMI Security for PKIX Extended Key Purpose" registry (1.3.6.1.5.5.7.3), this OID is defined in section [](#eku). +IANA is requested to register the following OID "1.3.6.1.5.5.7.3.TBD" in the "SMI Security for PKIX Extended Key Purpose" registry (1.3.6.1.5.5.7.3), this OID is defined in section [](#eku). + +IANA is requested to register the following OID "1.3.6.1.5.5.7.0.TBD" in the "SMI Security for PKIX Module Identifier" registry (1.3.6.1.5.5.7.0), this OID is defined in section [](#asn1-module). + +# Appendix A. ASN.1 Module {#asn1-module} +{:numbered="false"} + +The following module adheres to ASN.1 specifications {{X.680}} and {{X.690}}. + +~~~ + +OauthStatusSigning-EKU + { iso(1) identified-organization(3) dod(6) internet(1) + security(5) mechanisms(5) pkix(7) id-mod(0) id-mod-oauth-status-signing-eku (TBD) } + +DEFINITIONS IMPLICIT TAGS ::= +BEGIN + +-- OID Arc + +id-kp OBJECT IDENTIFIER ::= + { iso(1) identified-organization(3) dod(6) internet(1) + security(5) mechanisms(5) pkix(7) kp(3) } + +-- Extended Key Usage Values + +id-kp-oauthStatusSigning OBJECT IDENTIFIER ::= { id-kp TBD } + +END +~~~ --- back From b756063bd55b787d9389c5a8b09332c805341aca Mon Sep 17 00:00:00 2001 From: Christian Bormann Date: Tue, 11 Nov 2025 09:55:00 +0100 Subject: [PATCH 2/6] fix line width --- draft-ietf-oauth-status-list.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index db8c269..bed5f4a 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -1505,7 +1505,8 @@ The following module adheres to ASN.1 specifications {{X.680}} and {{X.690}}. OauthStatusSigning-EKU { iso(1) identified-organization(3) dod(6) internet(1) - security(5) mechanisms(5) pkix(7) id-mod(0) id-mod-oauth-status-signing-eku (TBD) } + security(5) mechanisms(5) pkix(7) id-mod(0) + id-mod-oauth-status-signing-eku (TBD) } DEFINITIONS IMPLICIT TAGS ::= BEGIN From cc9ad57bb75d80487fbf8beab9136e5df2ce7102 Mon Sep 17 00:00:00 2001 From: Christian Bormann Date: Tue, 11 Nov 2025 09:56:12 +0100 Subject: [PATCH 3/6] add document history --- draft-ietf-oauth-status-list.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index bed5f4a..40d1982 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -1967,6 +1967,10 @@ CBOR encoding: # Document History {:numbered="false"} +-14 + +* Add ASN.1 module + -13 * add definition of client to terminology From eaa3d7ea8b8451424740940fabd6785e7fc4b2cc Mon Sep 17 00:00:00 2001 From: Christian Bormann Date: Tue, 11 Nov 2025 15:39:08 +0100 Subject: [PATCH 4/6] fix dates --- draft-ietf-oauth-status-list.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index 40d1982..575b7c2 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -90,12 +90,12 @@ normative: title: "Information Technology - Abstract Syntax Notation One (ASN.1): Specification of basic notation" author: org: International Telecommunications Union - date: "02/2021" + date: "13.02.2021" X.690: title: "Information Technology - ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER)" author: org: International Telecommunications Union - date: "02/2021" + date: "13.02.2021" informative: RFC6749: RFC6749 From 2bd170ccf1b9d82108b59fcd148e988d420ae583 Mon Sep 17 00:00:00 2001 From: Paul Bastian Date: Fri, 14 Nov 2025 17:40:35 +0100 Subject: [PATCH 5/6] Apply suggestions from code review Co-authored-by: Sean Turner --- draft-ietf-oauth-status-list.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index 575b7c2..9518ab2 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -1501,6 +1501,8 @@ IANA is requested to register the following OID "1.3.6.1.5.5.7.0.TBD" in the "SM The following module adheres to ASN.1 specifications {{X.680}} and {{X.690}}. + + ~~~ OauthStatusSigning-EKU @@ -1517,13 +1519,15 @@ id-kp OBJECT IDENTIFIER ::= { iso(1) identified-organization(3) dod(6) internet(1) security(5) mechanisms(5) pkix(7) kp(3) } --- Extended Key Usage Values +-- OAuth Extended Key Usage id-kp-oauthStatusSigning OBJECT IDENTIFIER ::= { id-kp TBD } END ~~~ + + --- back # Acknowledgments From b0631011f6ff5fd30a8e3ef70cc1715c8765d06e Mon Sep 17 00:00:00 2001 From: Paul Bastian Date: Fri, 14 Nov 2025 17:49:24 +0100 Subject: [PATCH 6/6] Update draft-ietf-oauth-status-list.md Co-authored-by: Christian Bormann --- draft-ietf-oauth-status-list.md | 31 +++++++++++++++---------------- 1 file changed, 15 insertions(+), 16 deletions(-) diff --git a/draft-ietf-oauth-status-list.md b/draft-ietf-oauth-status-list.md index 2b4dd36..124b932 100644 --- a/draft-ietf-oauth-status-list.md +++ b/draft-ietf-oauth-status-list.md @@ -1501,32 +1501,31 @@ IANA is requested to register the following OID "1.3.6.1.5.5.7.0.TBD" in the "SM The following module adheres to ASN.1 specifications {{X.680}} and {{X.690}}. - - ~~~ + -OauthStatusSigning-EKU - { iso(1) identified-organization(3) dod(6) internet(1) - security(5) mechanisms(5) pkix(7) id-mod(0) - id-mod-oauth-status-signing-eku (TBD) } + OauthStatusSigning-EKU + { iso(1) identified-organization(3) dod(6) internet(1) + security(5) mechanisms(5) pkix(7) id-mod(0) + id-mod-oauth-status-signing-eku (TBD) } -DEFINITIONS IMPLICIT TAGS ::= -BEGIN + DEFINITIONS IMPLICIT TAGS ::= + BEGIN --- OID Arc + -- OID Arc -id-kp OBJECT IDENTIFIER ::= - { iso(1) identified-organization(3) dod(6) internet(1) - security(5) mechanisms(5) pkix(7) kp(3) } + id-kp OBJECT IDENTIFIER ::= + { iso(1) identified-organization(3) dod(6) internet(1) + security(5) mechanisms(5) pkix(7) kp(3) } --- OAuth Extended Key Usage + -- OAuth Extended Key Usage -id-kp-oauthStatusSigning OBJECT IDENTIFIER ::= { id-kp TBD } + id-kp-oauthStatusSigning OBJECT IDENTIFIER ::= { id-kp TBD } -END -~~~ + END +~~~ --- back