[{"author": "Aaron Parecki", "text": "

FYI if any meetecho people are listening, the QR code in the room doesn't seem to be associated with this session, so folks have to navigate to the schedule in order to join the meeting tools

", "time": "2023-11-08T12:03:35Z"}, {"author": "Lorenzo Miniero", "text": "

Aaron: actually the displayed QR code should be working now

", "time": "2023-11-08T12:04:37Z"}, {"author": "Aaron Parecki", "text": "

oh great thank you

", "time": "2023-11-08T12:04:48Z"}, {"author": "Bradford Lassey", "text": "

RCS

", "time": "2023-11-08T12:15:07Z"}, {"author": "John Andersen", "text": "

Even if the initial channel is perfectly secure, we may not necessarily be able to use it for the transfer we care about (example: email attachment size limit). Hence the need for a second channel. Just one example.

", "time": "2023-11-08T12:28:16Z"}, {"author": "Eric Rescorla", "text": "

@John Andersen right. It also might require round trips

", "time": "2023-11-08T12:28:52Z"}, {"author": "John Andersen", "text": "

Yup

", "time": "2023-11-08T12:29:06Z"}, {"author": "Bradford Lassey", "text": "

@John, that's why we need the relay server. But this discussion is about adding a third channel

", "time": "2023-11-08T12:29:11Z"}, {"author": "John Andersen", "text": "

Yeah my comment was laggy someone said somethin about perfectly secure initial channel a bit ago

", "time": "2023-11-08T12:29:37Z"}, {"author": "Bradford Lassey", "text": "

ah, sorry

", "time": "2023-11-08T12:29:47Z"}, {"author": "John Andersen", "text": "

No worries, apologies here as well for breaking current context

", "time": "2023-11-08T12:30:34Z"}, {"author": "Eric Rescorla", "text": "

The problem here is that systems design is holistic

", "time": "2023-11-08T12:39:58Z"}, {"author": "Eric Rescorla", "text": "

So we can't just ignore it

", "time": "2023-11-08T12:40:16Z"}, {"author": "Aaron Parecki", "text": "

exactly ekr

", "time": "2023-11-08T12:40:30Z"}, {"author": "Simon Friedberger", "text": "

I find this discussion of second factor properties unproductive, though. Let's specify a way to establish a channel that is as secure as possible and defer the decision of if further factors are required to the application.

", "time": "2023-11-08T12:43:14Z"}, {"author": "Eric Rescorla", "text": "

@Simon Friedberger you know where the mic line is :)

", "time": "2023-11-08T12:43:32Z"}, {"author": "Dean Saxe", "text": "

UMA2 preso that I referenced: https://www.youtube.com/watch?v=0cCXJvJ6GUY&t=14s&pp=ygUOZXZlIG1hbGVyIHVtYTI%3D

\n
", "time": "2023-11-08T12:45:40Z"}, {"author": "Eric Rescorla", "text": "

Thanks, @Dean Saxe

", "time": "2023-11-08T12:46:16Z"}, {"author": "Dean Saxe", "text": "

https://docs.kantarainitiative.org/uma/wg/rec-oauth-uma-grant-2.0.html

", "time": "2023-11-08T12:46:25Z"}, {"author": "Dean Saxe", "text": "

You're welcome ekr. This is an interesting problem, but it feels like we're attacking it from the wrong perspective

", "time": "2023-11-08T12:47:03Z"}, {"author": "Dean Saxe", "text": "

that's a fantastic distinction, Aaron

", "time": "2023-11-08T12:52:02Z"}, {"author": "Eric Rescorla", "text": "

@Aaron Parecki to be clear, I'm not a proponent of this work. I'm mostly taking the terms of engagement as a given. :)

", "time": "2023-11-08T12:54:01Z"}, {"author": "Aaron Parecki", "text": "

understood :)

", "time": "2023-11-08T12:54:27Z"}, {"author": "Dmitry Vinokurov", "text": "

It's more a delegation problem, but technically a cpoy

", "time": "2023-11-08T12:54:50Z"}, {"author": "Kaliya Young", "text": "

I think based on the comments so far from folks saying \"there is lots of prior art\" one place for the authors of this work could engage with the folks who are engaged with that prior art is the Internet Identity Workshop - next one is October 29-31 in Mountain View.

", "time": "2023-11-08T12:55:13Z"}, {"author": "Eric Rescorla", "text": "

If I had my way, we would instead persuade all these guys to do some existing standard authentication protocol rather than like whatever stuff they have now

", "time": "2023-11-08T12:55:19Z"}, {"author": "Eric Rescorla", "text": "

Which, I only imagine, is often of extremely dubious security value

", "time": "2023-11-08T12:55:36Z"}, {"author": "Dean Saxe", "text": "

I'm with @Kaliya Young and @Eric Rescorla - this group should engage deeply with the identity community to identify existing solutions that either work out of the box, or can be adapted to work within the constraints of the desired end state of the work.

", "time": "2023-11-08T12:57:06Z"}, {"author": "Kaliya Young", "text": "

?

", "time": "2023-11-08T12:59:32Z"}, {"author": "Dean Saxe", "text": "

@Kaliya Young you sent your message to the ietf-117 thread, you may wish to repeat it here.

", "time": "2023-11-08T13:00:03Z"}, {"author": "Kaliya Young", "text": "

I think based on the comments so far from folks saying \"there is lots of prior art\" one place for the authors of this work could engage with the folks who are engaged with that prior art is the Internet Identity Workshop - next one is October 29-31 in Mountain View.

", "time": "2023-11-08T13:00:20Z"}]