[Cfrg] HTTP Mutual Authentication information
Yutaka OIWA <y.oiwa@aist.go.jp> Fri, 30 March 2012 11:25 UTC
Return-Path: <yutaka-oiwa-aist-temp@g.oiwa.jp>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E2DB321F877F for <cfrg@ietfa.amsl.com>; Fri, 30 Mar 2012 04:25:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.977
X-Spam-Level:
X-Spam-Status: No, score=-2.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ju9I2mDU+Sqa for <cfrg@ietfa.amsl.com>; Fri, 30 Mar 2012 04:25:15 -0700 (PDT)
Received: from mail-wi0-f172.google.com (mail-wi0-f172.google.com [209.85.212.172]) by ietfa.amsl.com (Postfix) with ESMTP id 21D0E21F8721 for <cfrg@irtf.org>; Fri, 30 Mar 2012 04:25:14 -0700 (PDT)
Received: by wibhj6 with SMTP id hj6so511351wib.1 for <cfrg@irtf.org>; Fri, 30 Mar 2012 04:25:14 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:sender:from:date:x-google-sender-auth:message-id :subject:to:x-gm-message-state:content-type :content-transfer-encoding; bh=X6+AXtxflLnTQ+7y60AQgBc6nLrKFRWDGJpammtglOM=; b=XnLfdFyY9w0dB3rLB0OuiD91qwR/KrdQgQO5zzSKJC4LD5zPbq1sS4LKXbBybECQMY gmRFqZo4oyFOobjYCwdFw2zAudAXWZKoU7rQO6Pq87FfS17R/q/VlIYCRRglbXI6AqeL U8HfGYxCItvWFLAVbR72QDwV79QgA7wbqQCvecX9BZYZDwc3O73YyND9Qgtyrdwi4uSh 9I2zR2IazB2Cfo6yhhxw8/bmAQLgNRd7R05hjwJknMHdAE8g6Qbk4FrWexCyZFaZonU7 dT1LaxZU1O6blT2oy0MOtBhyhBu8k7arbEL9GJXib8bysuXDvEJJDamVlbKEqYOKGVmV CDlw==
Received: by 10.180.20.47 with SMTP id k15mr5461761wie.19.1333106714084; Fri, 30 Mar 2012 04:25:14 -0700 (PDT)
MIME-Version: 1.0
Sender: yutaka-oiwa-aist-temp@g.oiwa.jp
Received: by 10.216.167.75 with HTTP; Fri, 30 Mar 2012 04:24:53 -0700 (PDT)
From: Yutaka OIWA <y.oiwa@aist.go.jp>
Date: Fri, 30 Mar 2012 20:24:53 +0900
X-Google-Sender-Auth: pK2qlTYdc4BuCDnOCCg8WWyvElQ
Message-ID: <CAL8DUN-qng-q7KegBshNadJzF-QuDaHjrjC-d9NJ2-Qr7dyWTA@mail.gmail.com>
To: cfrg@irtf.org
X-Gm-Message-State: ALoCoQkUbNWq6Pa/7//GG5gaFBEL/1/2AwA+c3xhCCII4Kje2vhTHm4noMsOicCHNdeGTp4yBYZ0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Subject: [Cfrg] HTTP Mutual Authentication information
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Mar 2012 11:25:16 -0000
Dear all, The following is the draft of the HTTP PAKE application I mentioned in the meeting: http://tools.ietf.org/html/draft-oiwa-http-mutualauth-10 This is the core document of the proposal. http://tools.ietf.org/html/draft-oiwa-http-mutualauth-algo-01 This is the companion draft defining one specific crypt scheme: http://tools.ietf.org/html/draft-oiwa-http-auth-extension-00 This is another companion draft, defining non-crypto extensions which is needed to accommodate current Form-based applications to HTTP authentication. Please also refer https://www.rcis.aist.go.jp/special/MutualAuth/index-en.html for implementations, UI considerations, past presentations in IETF and more. Cheers, Yutaka -- Yutaka OIWA, Ph.D. Research Scientist Research Center for Information Security (RCIS) National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: <y.oiwa@aist.go.jp>, <yutaka@oiwa.jp> OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5]
- [Cfrg] HTTP Mutual Authentication information Yutaka OIWA