Re: [abfab] Alissa Cooper's Discuss on draft-ietf-abfab-aaa-saml-13: (with DISCUSS and COMMENT)

"Cantor, Scott" <cantor.2@osu.edu> Tue, 05 January 2016 22:20 UTC

Return-Path: <cantor.2@osu.edu>
X-Original-To: abfab@ietfa.amsl.com
Delivered-To: abfab@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 015F01AC3CA; Tue, 5 Jan 2016 14:20:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.002
X-Spam-Level:
X-Spam-Status: No, score=-0.002 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CUXF29_cqt06; Tue, 5 Jan 2016 14:20:04 -0800 (PST)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0115.outbound.protection.outlook.com [207.46.100.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9247D1AC3CC; Tue, 5 Jan 2016 14:20:04 -0800 (PST)
Received: from BL2FFO11OLC007.protection.gbl (10.173.160.31) by BL2FFO11HUB018.protection.gbl (10.173.160.110) with Microsoft SMTP Server (TLS) id 15.1.355.15; Tue, 5 Jan 2016 22:20:02 +0000
Authentication-Results: spf=pass (sender IP is 164.107.81.222) smtp.mailfrom=osu.edu; cooperw.in; dkim=none (message not signed) header.d=none;cooperw.in; dmarc=bestguesspass action=none header.from=osu.edu;
Received-SPF: Pass (protection.outlook.com: domain of osu.edu designates 164.107.81.222 as permitted sender) receiver=protection.outlook.com; client-ip=164.107.81.222; helo=cio-tnc-pf08.osuad.osu.edu;
Received: from cio-tnc-pf08.osuad.osu.edu (164.107.81.222) by BL2FFO11OLC007.mail.protection.outlook.com (10.173.160.142) with Microsoft SMTP Server (TLS) id 15.1.355.15 via Frontend Transport; Tue, 5 Jan 2016 22:20:02 +0000
Received: from CIO-KRC-HT02.osuad.osu.edu (localhost [127.0.0.1]) (using TLSv1.2 with cipher AES256-SHA256 (256/256 bits)) (No client certificate requested) by cio-tnc-pf08.osuad.osu.edu (Postfix) with ESMTPS id 7B4512E0081; Tue, 5 Jan 2016 17:20:01 -0500 (EST)
Received: from CIO-TNC-D2MBX02.osuad.osu.edu ([fe80::3960:dd86:ba2:ad26]) by CIO-KRC-HT02.osuad.osu.edu ([fe80::8554:1787:2a7:72c9%12]) with mapi id 14.03.0248.002; Tue, 5 Jan 2016 17:20:00 -0500
From: "Cantor, Scott" <cantor.2@osu.edu>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Alissa Cooper <alissa@cooperw.in>, The IESG <iesg@ietf.org>
Thread-Topic: [abfab] Alissa Cooper's Discuss on draft-ietf-abfab-aaa-saml-13: (with DISCUSS and COMMENT)
Thread-Index: AQHRR/DSbSMbZ4f0RkyQsMrR0hLJ0p7tflBw
Date: Tue, 5 Jan 2016 22:19:59 +0000
Message-ID: <9846A6064BD102419D06814DD0D78DE1127EC78C@CIO-TNC-D2MBX02.osuad.osu.edu>
References: <20160105183928.14669.69310.idtracker@ietfa.amsl.com> <568C1BEE.5040606@cs.tcd.ie>
In-Reply-To: <568C1BEE.5040606@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [140.254.59.244]
x-header-sapphire: true
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11OLC007; 1:VOs9FR5+ptZDp6pMABmemZt32ZVxg58tilNf2d7667yB4spmr5TKQZyDLWNIjflFAyYrXIMh6eBbCkCzu1IRYZPK9/yk79lSxkE6V5QVP2qXN7oZ++pAd1eErBEbQbcf7xHHY4TzE25kdgbuB+KMndWTkKRc7lJ6SGbW0ini0sglANf0es4p9r8OwBAv9mo/ViRDU5KDkNK8E2yvazSmBcZhtTtW4JSW2BmYiLNU5Tk9WSF49oEO8nJeBC6fsgED/HVLIC3bzKcyA9c/6+Puomq/hU+9gzJAmvIJVF19uegEyTXSnbyxm2lpCpytKr62fSHjQ4myQA4ZxjpZ26nRoa/zf5h2PLSQMl47jJU3NRQYcqSremi+aY9cAZzbdH+EsE+2AcsGPeDyZHXPigdG0J3XNxaejG+71RPOatGpgN8=
X-Forefront-Antispam-Report: CIP:164.107.81.222; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(2980300002)(438002)(199003)(189002)(97756001)(46406003)(50466002)(109096001)(92566002)(189998001)(86362001)(87936001)(88552001)(2950100001)(2900100001)(2920100001)(5250100002)(47776003)(5001770100001)(54356999)(50986999)(76176999)(66066001)(89122001)(75432002)(1220700001)(6116002)(106466001)(102836003)(1096002)(586003)(11100500001)(106116001)(230783001)(55846006)(3846002)(90282001)(5003600100002)(6806005)(33656002)(4326007)(5008740100001)(23726003)(93346002)(5004730100002); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2FFO11HUB018; H:cio-tnc-pf08.osuad.osu.edu; FPR:; SPF:Pass; PTR:cio-tnc-pf08.osuad.osu.edu; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB018; 2:OawupGLkHyst8NjB/RDc65QQss2S6B1R+ZXm/GX3U7dggVHS3pSDynaog0tIIWYAFN0C1iBM9BA2V5GQ9T5BioMTVSlxuGBwoG3Gj0Uq8lmQwiMf2jAY6HDXLLLXZ3hOiDQ1wt+t5sJPYnYHBgHjaw==; 3:osQRwjXChq9G7Vsialw2TMZr2lRzOx298yVe+Q5ZLiBMjYw0JWsSiW0s4GtvnjD4WGQL3y/MXUrvRTQ4xWecYUYnnJ9sQkNIF7NzUmrr5Xz+pNEu66P7ToJkva4w8kwGDhlBC6KUB+rePbiOBFdymKI4JS4qs9Uimivj7Fq19Loijkxu4JExtyh9J2+S4jZp57WP7o03SDs9b2CHHfKjajuTbWZtLjfrarS0uNvpIyYoV5WNpBLzkdrHIxeoZjqynLuUGSqvwPGm3DtnMcdUOg==; 25:FaZ95l8WN3UjGT1WNIuVncdfS8mGAp2k9TJZ5G1yoLHw/SwMXPJQOsXGFWEJFvlWU9+LrNwmI8Fq0m2rE7vwd+4LLP1XRgV/BEz3VBxnnsA//jSbmq8gfLb1lgpuLLZJqHJEW4I2MHZUV6ieAJ6mvCugR9/eyTFVr83Sb9xGGUHKztc+A/iXH5fojHPz8SQLRas7MLzMVW0MdnzXUgYYuUSUbv/5In35wd6mUFdWGFGF/ZIH8lZ0TCeXmYNJ/u9ylZ+7Gk9LEn8jmldbL16NJQ==
X-Exchange-Antispam-Report-Test: UriScan:; BCL:0; PCL:0; RULEID:(8251501002); SRVR:BL2FFO11HUB018; UriScan:;
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB018; 20: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; 4:K54uhG40E/fZTo3qDgKbjnT1CEKQZ6F4TYj3+UsqzRBk889/r7TQ4uaiTO10J49lm8f1DU0BuLIeS24sr8043xp54wqWMEMJIgTzZIZJcsM7Rb41nyHFd+E1jjpZzaZ8+gzjjZ74CA84bbGrjY66BKh7tPUACRrpJe6hvZAhCTrgS1rEaMH+Zlp/BdQPHQsSFiSdaRjt8NlK6v0paNhM5JxosU8Zats+3+tzVjcXFusjN2kIt+SZXIMv3774SA2LZ8N8PHlAx37JHVTeVhmIXiMuz/FNr9SWEQXlZ3g2RzYOKZDltHAOG5Opfhoh7Zogfu06pTQCPP84GOcUeOP70Z8XxrxFPkb8dZruHqOdwC9BiLyQfY53ZU7Sgx1JAWPQ
X-Microsoft-Antispam-PRVS: <BL2FFO11HUB01836B2353A75485E03A463D0F30@BL2FFO11HUB018.protection.gbl>
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(2401047)(8121501046)(5005006)(520078)(3002001)(10201501046); SRVR:BL2FFO11HUB018; BCL:0; PCL:0; RULEID:; SRVR:BL2FFO11HUB018;
X-Forefront-PRVS: 0812095267
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; BL2FFO11HUB018; 23:g6LnT/XpGjNVlKuGANkdYfNL+g+OXuhmjXkyMVee?= =?us-ascii?Q?/awH0dXG38BMa6Dh6lRb7A+800DE61HRNhVbIlr3pO6vxg9+sZfk9hbSAJk3?= =?us-ascii?Q?csb+Utx3MBFMCwa/UUKqGpuwhxwEO2KiEaBMkAPNM632R69kZmsydW/C/6rL?= =?us-ascii?Q?JMHGjdSFVNY9hBbxqboSyEQf75Amayy+jjKs8Bo+82nJI9LXiH2LSuEObPI5?= =?us-ascii?Q?7yDIcUUYJtKY4BZVkQRGZmn5HtkyTZ+a8VoYnYdaYL6krOvQLx4HgCUTe1GF?= =?us-ascii?Q?TyuyM2Ubiwjz/RynjV05mb1QEiUxl8i/dXPMp844OmRThfvjI8l77t9ma+Be?= =?us-ascii?Q?JqyERcPETZ/exX/oubxEs9IW1s4QyJrSOFpgakMlKjSdJPb1ArodQMoZAaDY?= =?us-ascii?Q?spcDvCzpYSN8MaNRM+SCl6mlfcj1438TBCtGqLlBwrNdnZvl2yIznYPmDmLs?= =?us-ascii?Q?Rgc3vs1thJvJifr7f4QF3Ikrdwi264D8bYhA7rwhyXHyfkyUdX8sryrxOYef?= =?us-ascii?Q?PscfkM6vc7UWafet7893YKR7nnajwCNRGNDwzg/2HNsXH+HPR9zT1SD3uYfU?= =?us-ascii?Q?/sY4XpVrZQei91VwRGN55fQUZvZrl+i1v9f16aMSh4ll38p99oDIU+SPoskw?= =?us-ascii?Q?0+xMkQWDzd/iw3WYUXO/GlWGsceHS/sgBVXhlNontDXDiL6wvGW6X22GmVT/?= =?us-ascii?Q?Fkseoy47J0ZkpD15rbcRm9Dxuq+7hBmWMvmyfDzpzrn1JmQ/ozZT1joKIjn5?= =?us-ascii?Q?Q5scv3IJsvFrZSacv8UcVyz/N9VQrN7jbMoSPNAAyiNSDaSS5NDBstPPu43n?= =?us-ascii?Q?VBqDRTFRnymJrTitrPDGxkTXmmoxY1n8mEqbk9Mem0qinWrTZiY2AO7m3Nzo?= =?us-ascii?Q?YkD5keS/2u7a4ypXer+LuiiA32yUS6a8+MJP5xRMEYJTjRgbt5FAnOYv9k+2?= =?us-ascii?Q?a+xq2oZRO/zLv9XBR6nnyMYwY+QiE8qa5LTU0w6lPdtrOI6PBOXQnRz6avAJ?= =?us-ascii?Q?r00yW4RbQbNzWh1emWTaoRJ4GVj+74mqc2j+kKplWRmw1VM9NoMOkcEJr89K?= =?us-ascii?Q?++qqFrCMIKGwyG3EXXWlwyfQ+0JHyBRzs/X4Jx9i1a5YuW2NRRCVMmejO/6Q?= =?us-ascii?Q?d8LSVzDIC1ayLhtuUWN9wn1tiHQCRCoqepVLkqrXeMB8p96TYTKhRVG00/bb?= =?us-ascii?Q?79iY7meadinm3NY=3D?=
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB018; 5:UFaTlgjL6/acmKcEGIn8SxVuwzvP60QjDTgJtXTwqaMAn10hFff33O89kllBkW+EE9dpiFt+L+QcgJruvSVfTDMA070Lk9Vt/kh5RT8DJFKlmXybpQeGR0I1uwLiNqQFeWuhxbF1c3R+BAZ9EG8lvg==; 24:KsSKVz5DtJZ3DUC3gjUg2X2ODdbB8MtXpqfSSoaXtLa9QhkaWaJk6Ke4xf2R7yV++Zu9dOHuk/i5xwXxWP6QkxAru+AP1MuwjB7JTa9iLiY=
SpamDiagnosticOutput: 1:23
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: osu.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 05 Jan 2016 22:20:02.4929 (UTC)
X-MS-Exchange-CrossTenant-Id: b4d138ca-1815-4a9b-a3a7-130a33b1e692
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=b4d138ca-1815-4a9b-a3a7-130a33b1e692; Ip=[164.107.81.222]; Helo=[cio-tnc-pf08.osuad.osu.edu]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2FFO11HUB018
Archived-At: <http://mailarchive.ietf.org/arch/msg/abfab/e4xBkQte9B8H38adi5vQ3dSTrCg>
Cc: "abfab@ietf.org" <abfab@ietf.org>, "abfab-chairs@ietf.org" <abfab-chairs@ietf.org>, "draft-ietf-abfab-aaa-saml@ietf.org" <draft-ietf-abfab-aaa-saml@ietf.org>
Subject: Re: [abfab] Alissa Cooper's Discuss on draft-ietf-abfab-aaa-saml-13: (with DISCUSS and COMMENT)
X-BeenThere: abfab@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Application Bridging, Federated Authentication Beyond \(the web\)" <abfab.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/abfab>, <mailto:abfab-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/abfab/>
List-Post: <mailto:abfab@ietf.org>
List-Help: <mailto:abfab-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/abfab>, <mailto:abfab-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jan 2016 22:20:07 -0000

> Yes, various folks involved in OASIS SAML work reviewed this.
> I think the last was Scott Cantor, who's secretary of the OASIS security
> services TC that does SAML. I think we're good on that and it's just using
> planned extensibility points.

Not disputing your point, but for the record I'm not Secretary, just a TC member, and yes, I advised that if you wanted the work done, you'd have to do it, not rely on the SSTC to do it.

-- Scott