Re: [dix] Agenda bashing
Eliot Lear <lear@cisco.com> Mon, 03 July 2006 19:45 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FxUMU-0004mp-3H; Mon, 03 Jul 2006 15:45:38 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FxUMT-0004mk-CY for dix@ietf.org; Mon, 03 Jul 2006 15:45:37 -0400
Received: from sj-iport-6.cisco.com ([171.71.176.117]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FxUMS-0001g4-2a for dix@ietf.org; Mon, 03 Jul 2006 15:45:37 -0400
Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-6.cisco.com with ESMTP; 03 Jul 2006 12:45:35 -0700
Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id k63JjZdh025780 for <dix@ietf.org>; Mon, 3 Jul 2006 12:45:35 -0700
Received: from imail.cisco.com (sjc12-sbr-sw3-3f5.cisco.com [172.19.96.182]) by sj-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id k63JjZ9s028913 for <dix@ietf.org>; Mon, 3 Jul 2006 12:45:35 -0700 (PDT)
Received: from [212.254.247.4] (ams3-vpn-dhcp4316.cisco.com [10.61.80.219]) by imail.cisco.com (8.12.11/8.12.10) with ESMTP id k63JeA3r016563 for <dix@ietf.org>; Mon, 3 Jul 2006 12:40:11 -0700
Message-ID: <44A973DC.9040801@cisco.com>
Date: Mon, 03 Jul 2006 21:45:32 +0200
From: Eliot Lear <lear@cisco.com>
User-Agent: Thunderbird 1.5.0.4 (Macintosh/20060530)
MIME-Version: 1.0
To: Digital Identity Exchange <dix@ietf.org>
Subject: Re: [dix] Agenda bashing
References: <20060703172550.A182A222425@laser.networkresonance.com>
In-Reply-To: <20060703172550.A182A222425@laser.networkresonance.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Authentication-Results: sj-dkim-2.cisco.com; header.From=lear@cisco.com; dkim=pass ( sig from cisco.com verified; );
DKIM-Signature: a=rsa-sha1; q=dns; l=1199; t=1151955935; x=1152819935; c=relaxed/simple; s=sjdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=lear@cisco.com; z=From:Eliot=20Lear=20<lear@cisco.com> |Subject:Re=3A=20[dix]=20Agenda=20bashing; X=v=3Dcisco.com=3B=20h=3D6inNqoEUmFyA1l2ZAW91r5N7nQI=3D; b=qDQJgJGd6ALb0U2KZO1YENTPTHL88f9EZl4ZBxrUvi1ENHzRSaqyKo9cpj+yJZrDXc1ecHLg mSDZuDUyKDsbcCFcvYl1LrZRzcm9HRMbIrekMxpvCZl6vs/EO8uylSNI;
X-Spam-Score: 0.0 (/)
X-Scan-Signature: ea4ac80f790299f943f0a53be7e1a21a
X-BeenThere: dix@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Digital Identity Exchange <dix@ietf.org>
List-Id: Digital Identity Exchange <dix.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/dix>
List-Post: <mailto:dix@ietf.org>
List-Help: <mailto:dix-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
Errors-To: dix-bounces@ietf.org
Eric Rescorla wrote: > Eliot Lear <lear@cisco.com> wrote: > >> Pete, >> >>> So, from the conversation so far, these are the architectural/protocol >>> issues I think need discussing at the BOF: >>> >>> - Discussion of the scope and number of the mechanisms. There seem to >>> be desires for (1) the ability for the user to identify to the server >>> (probably authenticating, preventing phishing as much as possible), >>> (2) the ability to transfer user attributes to the server, (3) the >>> ability to store user attributes remotely, and (4) the ability for a >>> 3rd-party to warrant user attribute claims. >>> >> On point (1) in order to fix phishing it is the server that must >> properly authenticate to the user (e.g., other way round). >> > > That's *one* way to attack phishing (at least the current form). > There are others (cf. PwdHash) > I'm sorry, but PwdHash is not enough of a reference for me to understand, but I claim that the most *effective* way to prevent phishing is to demand that the server prove its identity enough to know the right question to ask of the client. If PwdHash covers this ground, then we agree. Eliot _______________________________________________ dix mailing list dix@ietf.org https://www1.ietf.org/mailman/listinfo/dix
- Re: [dix] Agenda bashing Eliot Lear
- [dix] Agenda bashing Pete Resnick
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- RE: [dix] Agenda bashing Hallam-Baker, Phillip
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Pete Resnick
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Haripriya S
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing thayes0993
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Ben Laurie
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- RE: [dix] Agenda bashing Hallam-Baker, Phillip
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eliot Lear
- Re: [dix] Agenda bashing Eric Rescorla
- Re: [dix] Agenda bashing Eliot Lear
- Re[2]: [dix] Agenda bashing Chris Drake