From nobody Mon May 8 09:56:32 2017 Return-Path: X-Original-To: webpush@ietfa.amsl.com Delivered-To: webpush@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD485128D44 for ; Mon, 8 May 2017 09:56:29 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u7pW9npVmMgF for ; Mon, 8 May 2017 09:56:28 -0700 (PDT) Received: from mail-yw0-x22f.google.com (mail-yw0-x22f.google.com [IPv6:2607:f8b0:4002:c05::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E91CB1200F1 for ; Mon, 8 May 2017 09:56:27 -0700 (PDT) Received: by mail-yw0-x22f.google.com with SMTP id 203so32391372ywe.0 for ; Mon, 08 May 2017 09:56:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=ozZrYPHC/Wo4AmsKDaSn+8MyURWnHQzrFpknQnYPVnM=; b=pud2oJBzUrneCi/8AJ95uuysvstsWwBEqzUHpKjtHhD3z5f7gNZLD1Q1US7oNs60h6 avQ/MxCMLofvgr+1wqGjR4t0r9bTdiomeieLMEZyDXcGvcxbPy12KZ55n3wHkCz1sCOK Tg0LazmiRvDeAcKZNon+z8gDq02mC1PsUc8+6rXyfGKoo554K/rnO12enx37wHXQEnkT NnYfW5nUYF6JLQwSkAQ6DpmTvxpn88/VZdB+/af9X+gMtbVe6HGUFzxvjUqVpy99jb9p LQNGJzXPJzrd9G6GxE5ByeQNmj50OwA6hvdBQ7mljdsKDB9/+gL0ZBjyRnLSxMi35Vcd pRww== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=ozZrYPHC/Wo4AmsKDaSn+8MyURWnHQzrFpknQnYPVnM=; b=QWF8W3QOtJ6dEjyXufx0Rb8K2wkDZGjNSZxwyCEQ1MMvuJAW68zZB8d7j1fzZR4Asv VxBAYF49AOeQUkCRcjOnLdvuyyffbl4+hN5CTGA1AToSoiccasjx0w/v9yTYDcS1EveS MCdDohTDJEpMbVcKdJXIkwx/y2gCYJ9ARsbI81nckh2sFGymROuuH5qhpLcK3MSNhqIn w6Rqda/81fSnIaO0YfjcMvNqGaIg7IfR1VuFGO6y7SlRjG9aNipDd6wWlX6v+2f/Zqsn wK58QAgqzioTJ7OQ4TC59n2YOiZLky9u5ZHrdUcdpZ1tCIQDWagTAzOEcaaoWg1Buj9R WzPA== X-Gm-Message-State: AN3rC/52zqj3AgA0gMJv8sWwe8yeFUcZNqKQQRHQj0M7Y+xYhGzgGEny 5pGkGB35fbxMfs76/UGPr8I2OrkTrggk X-Received: by 10.129.131.211 with SMTP id t202mr20532383ywf.107.1494262587150; Mon, 08 May 2017 09:56:27 -0700 (PDT) MIME-Version: 1.0 Received: by 10.129.26.1 with HTTP; Mon, 8 May 2017 09:56:26 -0700 (PDT) In-Reply-To: References: From: Peter Beverloo Date: Mon, 8 May 2017 17:56:26 +0100 Message-ID: To: Martin Thomson Cc: Phil Sorber , "webpush@ietf.org" Content-Type: multipart/alternative; boundary=94eb2c07a516b5b1ed054f061e3f Archived-At: Subject: Re: [Webpush] WGLC for draft-ietf-webpush-encryption-08 X-BeenThere: webpush@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussion of potential IETF work on a web push protocol List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 May 2017 16:56:30 -0000 --94eb2c07a516b5b1ed054f061e3f Content-Type: text/plain; charset=UTF-8 +1 The draft looks great to me, thank you for driving this Martin! I sent a PR with a few editorial suggestions. I've verified the example and will provide an implementation of the draft for Chrome. Thanks, Peter On Wed, Apr 26, 2017 at 7:25 AM, Martin Thomson wrote: > Aside from thinking that this is ready (author bias notwithstanding), > if you want to send nits (or open issues), the draft is on github > here: > > https://github.com/webpush-wg/webpush-encryption > > I'd be happy to take an input there. > > On 26 April 2017 at 08:04, Phil Sorber wrote: > > 2. If you only find nits, they can be sent directly to the author(s) > > _______________________________________________ > Webpush mailing list > Webpush@ietf.org > https://www.ietf.org/mailman/listinfo/webpush > --94eb2c07a516b5b1ed054f061e3f Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
+1

The draft looks great to me, thank y= ou for driving this Martin! I sent a PR with a few editorial suggestions. I= 've verified the example and will provide an implementation of the draf= t for Chrome.

Thanks,
Peter
<= div class=3D"gmail_extra">
On Wed, Apr 26, 20= 17 at 7:25 AM, Martin Thomson <martin.thomson@gmail.com> wrote:
Aside from thinking that this = is ready (author bias notwithstanding),
if you want to send nits (or open issues), the draft is on github
here:

https://github.com/webpush-wg/webpush-encryptio= n

I'd be happy to take an input there.

On 26 April 2017 at 08:04, Phil Sorber <sorber@apache.org> wrote:
> 2. If you only find nits, they can be sent directly to the author(s)
_______________________________________________
Webpush mailing list
Webpush@ietf.org
https://www.ietf.org/mailman/listinfo/webpush<= br>

--94eb2c07a516b5b1ed054f061e3f-- From nobody Thu May 11 12:03:43 2017 Return-Path: X-Original-To: webpush@ietfa.amsl.com Delivered-To: webpush@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9010131465 for ; Thu, 11 May 2017 12:03:41 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mj0QibLgWwyb for ; Thu, 11 May 2017 12:03:39 -0700 (PDT) Received: from mail-yw0-x229.google.com (mail-yw0-x229.google.com [IPv6:2607:f8b0:4002:c05::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 505841242F5 for ; Thu, 11 May 2017 11:57:22 -0700 (PDT) Received: by mail-yw0-x229.google.com with SMTP id l135so963651ywb.2 for ; Thu, 11 May 2017 11:57:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:from:date:message-id:subject:to:cc; bh=V4Ahl1NmEwqV6xj8ntZiHsW3qW0pprhd8tGxnYhU6vw=; b=pqFtU1NP6e6xdPjIgJdG8FbuzWt7qsUNBytoAmIVWl5/ecaUkHhqG98NLeD8xatP1N 9JdF8uKvSnLFosjt2PrN3a3DB0okJ0LajD3TIqMf1KA1Mitq947CyzQFUbcsr+YTdAb7 rAsQkP08irO59z3Ax1k6xf4CgQua4tJVSPxgUcrsw7gCNrvs4N7xGYP17QBnTnXM1I2A 1mx31e0dbp6XoTIt9M15DZvH/daP5P8IPDAYqUbSbiOpb9mjV0KeChamcaEQevVRWy22 WzbXv+HfsP06JPgRnPqOBsoriABVrjt0GZAbRLi2wq7f6eIf+Snh8afHHO1vHTq9rFM1 id/w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc; bh=V4Ahl1NmEwqV6xj8ntZiHsW3qW0pprhd8tGxnYhU6vw=; b=du52FKt2Xff03pHXCKssSLj7TC1YCya4gViTbQo9DmCIb9qUE7FfxcB4WgHOT8/HkZ zf5uRFH8Dd5lyR6tI+P99CyVGo5b9KqPBZnC8IIhHhEpMlQjnNNmcer/1b/+phmbBFC4 c3YeAzw/GRvG4blBe4H0Be73bS7Fjy87xNQesQJyhRUKt5MG+aT2q7T74JXEFH8E45CT AQ1Yl/td/I7G42hY0FZMmii8bbAd0GXR9uBKJMyZp5I8klR6O4IstI585lUP+5vJp72J uUiVg0TzESFb9lHXlzBZE0Ok2xJP9A5/9E7MfqsLoBAJxF5/sD4d42/O/oZJqUKj+QQU O60w== X-Gm-Message-State: AODbwcCyLrzGlOc0VyyB+3u0QZX8crbi3/Txpj8ZqZdC2VTUaAH3uqR0 eRqs3fTNPKJp5tePJa2dseZHFOlIuQfd X-Received: by 10.129.177.72 with SMTP id p69mr32896ywh.184.1494529041470; Thu, 11 May 2017 11:57:21 -0700 (PDT) MIME-Version: 1.0 Received: by 10.129.26.1 with HTTP; Thu, 11 May 2017 11:57:21 -0700 (PDT) From: Peter Beverloo Date: Thu, 11 May 2017 19:57:21 +0100 Message-ID: To: "webpush@ietf.org" , Martin Thomson Cc: Quan Nguyen Content-Type: multipart/alternative; boundary="94eb2c13cddca01d9a054f44289c" Archived-At: Subject: [Webpush] Suggestion regarding curve validation in draft-ietf-webpush-encryption X-BeenThere: webpush@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussion of potential IETF work on a web push protocol List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 May 2017 19:03:42 -0000 --94eb2c13cddca01d9a054f44289c Content-Type: text/plain; charset="UTF-8" Relaying for Quan Nguyen (cc'd): I would suggest adding a section about verifying peer's public key is on the private key's curve in ECDH protocol. Without this check, for the curve that they use P-256, it would allow attacker to extract the private key. Thanks, Peter --94eb2c13cddca01d9a054f44289c Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Relaying for Quan Nguyen (cc'd):
=C2=A0 =C2=A0 =C2=A0 I would suggest adding a section about ve= rifying peer's public key
=C2=A0 =C2=A0 =C2=A0 is on the priv= ate key's curve in ECDH protocol. Without this check,
=C2=A0 = =C2=A0 =C2=A0 for the curve that they use P-256, it would allow attacker to=
=C2=A0 =C2=A0 =C2=A0 extract the private key.

Thanks,
Peter

--94eb2c13cddca01d9a054f44289c-- From nobody Thu May 11 17:31:39 2017 Return-Path: X-Original-To: webpush@ietfa.amsl.com Delivered-To: webpush@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20FA712EAD9 for ; Thu, 11 May 2017 17:31:38 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dXcQXFnTEBYO for ; Thu, 11 May 2017 17:31:36 -0700 (PDT) Received: from mail-wr0-x22a.google.com (mail-wr0-x22a.google.com [IPv6:2a00:1450:400c:c0c::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AFC56129B84 for ; Thu, 11 May 2017 17:26:31 -0700 (PDT) Received: by mail-wr0-x22a.google.com with SMTP id w50so33452050wrc.0 for ; Thu, 11 May 2017 17:26:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=O4IQIwjEQ7596KkwkGMFJ4OVI8fuayx5qC4q911CMIo=; b=rXdx9FofK4CyqbY7RPBg3G65ZTJhOuLJq0mRGSH1jmy8EyP9Gjf/UkUSu3Z2gA1va1 txHBYJM16EZILIV1hgNdk/0O1Fgqy2JXfF+g/khqHzwM3KHSI0w1GMoeezLU/fPrvT+0 dD5s8Gcs6itMNZ8INwY5GFTCJlOzmOIgJ+WF6IusQVC5IFtbzYe023o92LpnCJZO37kj NN8W3mLSMX5GClfOZn2ysBgEeJYNWwDwCH/cwOKR42oghKthzl/WaS1noHu9UxFgW0Od j6HcCoHVIoqvQx+861iH69H6CXMu8oREaI4C40Rk4msNUn9vyAJAjBwTOvh+qFnUedub r3iw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=O4IQIwjEQ7596KkwkGMFJ4OVI8fuayx5qC4q911CMIo=; b=OHC4n6KohDazaSbSNZ4mI5/gBCsKsYX+hstSIMtvrrDsoNYYCQXsCes/WHj8yeorzw keSLTVI2rz19SrPjcAqx8uoI2bpZ1ihHkV5C/xCNNC+dFvD3SU9L9hwTgmNxSB4nARjz d2VcDsFGrs0glVb7MfcMNdwH7VEyBVxqKyqMkisrk7hpbpDflIznKEbx4yBFFnsAGwc2 8ySKWl4O4KpCdHK1icp0Rfd0piQv1NtnlxxM1KBaew3PNqRNJfngHsXNDVl8FdMKBeBJ 93dYPxdtAwrr+i7yf69OVKwtY0hSfCr31houyVoFaj0jiFTTixzO5Y2hL8uXP0LXgeBc 87VA== X-Gm-Message-State: AODbwcDp0XwSlbslcZONc1At8ci6AdQw5sI+aSyvtn3eQINo63Q7/Dsz mdxdLnjrdvLrW+jyxgHBJTqbVV2i8Q== X-Received: by 10.46.19.18 with SMTP id 18mr321287ljt.103.1494548790224; Thu, 11 May 2017 17:26:30 -0700 (PDT) MIME-Version: 1.0 Received: by 10.46.83.2 with HTTP; Thu, 11 May 2017 17:26:29 -0700 (PDT) In-Reply-To: References: From: Martin Thomson Date: Fri, 12 May 2017 10:26:29 +1000 Message-ID: To: Peter Beverloo Cc: "webpush@ietf.org" , Quan Nguyen Content-Type: text/plain; charset="UTF-8" Archived-At: Subject: Re: [Webpush] Suggestion regarding curve validation in draft-ietf-webpush-encryption X-BeenThere: webpush@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussion of potential IETF work on a web push protocol List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 May 2017 00:31:38 -0000 Yeah, probably not a bad idea. I originally assumed that this was part of most libraries (NSS does this always), but since writing the draft I've learned that not every library does this properly. I've updated my private copy of the draft. I've also checked that my implementations of the draft aren't vulnerable (I only traced the code, but it appears that they all end up in the openssl key import code, which validates points: https://github.com/openssl/openssl/blob/master/crypto/ec/ec_lib.c#L741). On 12 May 2017 at 04:57, Peter Beverloo wrote: > Relaying for Quan Nguyen (cc'd): > > I would suggest adding a section about verifying peer's public key > is on the private key's curve in ECDH protocol. Without this check, > for the curve that they use P-256, it would allow attacker to > extract the private key. > > Thanks, > Peter > From nobody Sat May 13 13:22:14 2017 Return-Path: X-Original-To: webpush@ietfa.amsl.com Delivered-To: webpush@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 281D2127601 for ; Sat, 13 May 2017 13:22:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.522 X-Spam-Level: X-Spam-Status: No, score=-4.522 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y5eyKVukO0cV for ; Sat, 13 May 2017 13:22:11 -0700 (PDT) Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by ietfa.amsl.com (Postfix) with SMTP id 2C3BF129B9C for ; Sat, 13 May 2017 13:19:09 -0700 (PDT) Received: (qmail 42340 invoked by uid 99); 13 May 2017 20:19:08 -0000 Received: from mail-relay.apache.org (HELO mail-relay.apache.org) (140.211.11.15) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 13 May 2017 20:19:08 +0000 Received: from mail-io0-f169.google.com (mail-io0-f169.google.com [209.85.223.169]) by mail-relay.apache.org (ASF Mail Server at mail-relay.apache.org) with ESMTPSA id 1FF251A0A04 for ; Sat, 13 May 2017 20:19:08 +0000 (UTC) Received: by mail-io0-f169.google.com with SMTP id o12so56183839iod.3 for ; Sat, 13 May 2017 13:19:08 -0700 (PDT) X-Gm-Message-State: AODbwcAmHqlZTAOCsX3HSf3Pssrp9WMEQRGmWdAvT8S/wWAPZ0Rbr8Fy Nm02PFdRqhQD1jfaiOeB+7gxB66umw== X-Received: by 10.107.170.201 with SMTP id g70mr9623458ioj.187.1494706747402; Sat, 13 May 2017 13:19:07 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Phil Sorber Date: Sat, 13 May 2017 20:18:56 +0000 X-Gmail-Original-Message-ID: Message-ID: To: Peter Beverloo , Martin Thomson Cc: "webpush@ietf.org" Content-Type: multipart/alternative; boundary="001a11426ae8b91148054f6d88a6" Archived-At: Subject: Re: [Webpush] WGLC for draft-ietf-webpush-encryption-08 X-BeenThere: webpush@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussion of potential IETF work on a web push protocol List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 May 2017 20:22:13 -0000 --001a11426ae8b91148054f6d88a6 Content-Type: text/plain; charset="UTF-8" Ok, it seems like we have consensus on this doc as well. I am going to move this doc to "waiting for writeup" and I'll shepherd it also. Thanks everybody! On Mon, May 8, 2017 at 12:56 PM Peter Beverloo wrote: > +1 > > The draft looks great to me, thank you for driving this Martin! I sent a > PR with a few editorial suggestions. I've verified the example and will > provide an implementation of the draft for Chrome. > > Thanks, > Peter > > On Wed, Apr 26, 2017 at 7:25 AM, Martin Thomson > wrote: > >> Aside from thinking that this is ready (author bias notwithstanding), >> if you want to send nits (or open issues), the draft is on github >> here: >> >> https://github.com/webpush-wg/webpush-encryption >> >> I'd be happy to take an input there. >> >> On 26 April 2017 at 08:04, Phil Sorber wrote: >> > 2. If you only find nits, they can be sent directly to the author(s) >> >> _______________________________________________ >> Webpush mailing list >> Webpush@ietf.org >> https://www.ietf.org/mailman/listinfo/webpush >> > > --001a11426ae8b91148054f6d88a6 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Ok, it = seems like we have consensus on this doc as well. I am going to move this d= oc to "waiting for writeup" and I'll shepherd it also.=

Thanks everybody!

On Mon, May 8, 2017 at 12:56 PM Peter Beverl= oo <beverloo@google.com> w= rote:
+1

<= /div>
The draft looks great to me, thank you for driving this Martin! I= sent a PR with a few editorial suggestions. I've verified the example = and will provide an implementation of the draft for Chrome.

<= /div>
Thanks,
Peter
On Wed, Apr 26, 2017 at 7:25 AM, Martin Thomson <martin.thomson@gmail.com> wrote:
= Aside from thinking that this is ready (author bias notwithstanding),
if you want to send nits (or open issues), the draft is on github
here:

https://github.com/webpush-wg/webpush-encryption=

I'd be happy to take an input there.

On 26 April 2017 at 08:04, Phil Sorber <sorber@apache.org> wrote:
> 2. If you only find nits, they can be sent directly to the author(s)
_________________________________= ______________
Webpush mailing list
Webpush@ietf.org<= br> https://www.ietf.org/mailman/listinfo/webpush

--001a11426ae8b91148054f6d88a6--