[dix] Agenda bashing
Pete Resnick <presnick@qualcomm.com> Mon, 03 July 2006 05:02 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FxGZf-00041x-O7; Mon, 03 Jul 2006 01:02:19 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FxGZe-00041s-SP for dix@ietf.org; Mon, 03 Jul 2006 01:02:18 -0400
Received: from 216-43-25-66.ip.mcleodusa.net ([216.43.25.66] helo=episteme-software.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FxGZc-0004ch-IH for dix@ietf.org; Mon, 03 Jul 2006 01:02:18 -0400
Received: from [12.105.228.215] (127.0.0.1) by episteme-software.com with ESMTP (EIMS X 3.3d22) for <dix@ietf.org>; Mon, 3 Jul 2006 00:02:13 -0500
Mime-Version: 1.0
X-Sender: resnick@resnick1.qualcomm.com
Message-Id: <p07000c11c0cb0029cc83@[12.105.228.215]>
X-Mailer: Eudora [Macintosh version 7.0a12]
Date: Mon, 03 Jul 2006 00:02:11 -0500
To: dix@ietf.org
From: Pete Resnick <presnick@qualcomm.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 3e15cc4fdc61d7bce84032741d11c8e5
Subject: [dix] Agenda bashing
X-BeenThere: dix@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Digital Identity Exchange <dix@ietf.org>
List-Id: Digital Identity Exchange <dix.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/dix>
List-Post: <mailto:dix@ietf.org>
List-Help: <mailto:dix-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
Errors-To: dix-bounces@ietf.org
So, from the conversation so far, these are the
architectural/protocol issues I think need discussing at the BOF:
- Discussion of the scope and number of the mechanisms. There seem to
be desires for (1) the ability for the user to identify to the server
(probably authenticating, preventing phishing as much as possible),
(2) the ability to transfer user attributes to the server, (3) the
ability to store user attributes remotely, and (4) the ability for a
3rd-party to warrant user attribute claims.
- Discussion of the pros and cons of mechanisms that involve changes
to the user agent versus mechanisms which rely on a separate identity
server to do all of the work without changing the user agent (e.g.,
DIX).
- Discussion of the types of authentication mechanisms to be used.
(I read Ben as saying it should be a general mechanism not tied to
HTTP, Eliot and Terry as saying that the underlying mechanism should
be common but that there should be HTTP-specific protocol, and John
as having no interest in solving that particular problem. :-) )
I don't think these discussions need to be spurred by presentations.
Most of this is going to be a high-level discussion and should
definitely not reference any particular mechanism. (If logistics
permit, I'd like to do a "pass the mic" format instead of standing in
a queue at the mics, and I will do floor control.) With that in mind,
here's what I have in mind for a meeting agenda:
(Pre-meeting: Find minutes and jabber people - volunteers NOW would
be useful!!)
- Start passing blue sheets, Agenda bash - 2 minutes
- What problems are we trying to solve? - 1 hour
- Discuss what sort of authentication/identification from user to
server is desired
- Anti-phishing discussion here
- Discuss what sort of attribute info from user to server is desired
- Discuss whether remote storage of attributes is desired
- Discuss whether 3rd-party claims are desired
- What sorts of mechanisms should we use? - 1 hour
- Discuss downsides of using current web auth mechanisms (i.e.,
user-agent changes)
- Discuss downsides of using mechanisms that include no user-agent changes
- Discuss authentication mechanism in light of above discussions
- What work items do we have? - 28 minutes
- Enumerate work items
- Enumerate documents (if different than above)
- Enumerate editors
- End
I have posted this for the agenda web page, but we can always make changes.
pr
--
Pete Resnick <http://www.qualcomm.com/~presnick/>
QUALCOMM Incorporated - Direct phone: (858)651-4478, Fax: (858)651-1102
_______________________________________________
dix mailing list
dix@ietf.org
https://www1.ietf.org/mailman/listinfo/dix
- Re: [dix] Agenda bashing Eliot Lear
- [dix] Agenda bashing Pete Resnick
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- RE: [dix] Agenda bashing Hallam-Baker, Phillip
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Pete Resnick
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Haripriya S
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing thayes0993
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Ben Laurie
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- RE: [dix] Agenda bashing Hallam-Baker, Phillip
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re[2]: [dix] Agenda bashing Chris Drake