IETF Logo Mail Archive

Re: [CHANNEL-BINDING] Re: draft-ietf-sasl-gs2 AD review comments

Jeffrey Hutzelman <jhutz@cmu.edu> Thu, 11 October 2007 17:52 UTC

Return-path: <channel-binding-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ig2Co-0005ez-Ly; Thu, 11 Oct 2007 13:52:19 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ig2Cn-0005e1-3y for channel-binding@ietf.org; Thu, 11 Oct 2007 13:52:17 -0400
Received: from minbar.fac.cs.cmu.edu ([128.2.185.161]) by ietf-mx.ietf.org with smtp (Exim 4.43) id 1Ig2Cb-00058x-Od for channel-binding@ietf.org; Thu, 11 Oct 2007 13:52:17 -0400
Received: from minbar.fac.cs.cmu.edu ([127.0.0.1]) by minbar.fac.cs.cmu.edu id aa10976; 11 Oct 2007 13:51 EDT
Date: Thu, 11 Oct 2007 13:51:23 -0400
From: Jeffrey Hutzelman <jhutz@cmu.edu>
X-X-Sender: <jhutz@minbar.fac.cs.cmu.edu>
To: Nicolas Williams <Nicolas.Williams@sun.com>
Subject: Re: [CHANNEL-BINDING] Re: draft-ietf-sasl-gs2 AD review comments
In-Reply-To: <20071011173152.GR24532@Sun.COM>
Message-ID: <Pine.LNX.4.33L.0710111343440.8820-100000@minbar.fac.cs.cmu.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 79899194edc4f33a41f49410777972f8
Cc: ietf-sasl@imc.org, channel-binding@ietf.org, Sam Hartman <hartmans-ietf@mit.edu>
X-BeenThere: channel-binding@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussion of channel binding IANA registry requests and specifications <channel-binding.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/channel-binding>, <mailto:channel-binding-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/channel-binding>
List-Post: <mailto:channel-binding@ietf.org>
List-Help: <mailto:channel-binding-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/channel-binding>, <mailto:channel-binding-request@ietf.org?subject=subscribe>
Errors-To: channel-binding-bounces@ietf.org

On Thu, 11 Oct 2007, Nicolas Williams wrote:

> On Thu, Oct 11, 2007 at 01:28:07PM -0400, Jeffrey Hutzelman wrote:
> > This sort of assumes that the "obvious" thing to do is prfix the name to
> > the data, rather than treating them separately.  That sssumption seems
> > flawed to me, and the source of much confusion.
>
> Did you miss this part of my reply to Sam:
>
> Nico> I propose the following addition to that requirement:  "Where the
> Nico> authentication interfaces provide a slot for channel binding data but no
> Nico> slot for channel binfing type, then the application MUST prefix the
> Nico> US-ASCII name of the channel binding type ("prefix"), and a separator
> Nico> character, ':', to the channel binding data an octet string."

I saw that; I just forgot to say anything.  That basically sounds like my
option (2).  I think that's probably sufficient.  Simon?

-- Jeff


_______________________________________________
CHANNEL-BINDING mailing list
CHANNEL-BINDING@ietf.org
https://www1.ietf.org/mailman/listinfo/channel-binding

v2.23.0 | Report a Bug | By Email