[dix] DRAFT: WAE BOF minutes
Dick Hardt <dick@sxip.com> Sat, 15 July 2006 17:38 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1G1o5j-0001xX-9d; Sat, 15 Jul 2006 13:38:11 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1G1o5h-0001xQ-SG for dix@ietf.org; Sat, 15 Jul 2006 13:38:09 -0400
Received: from marlin.sxip.com ([199.60.48.20] helo=mail1.sxip.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1G1o5g-0005zL-D4 for dix@ietf.org; Sat, 15 Jul 2006 13:38:09 -0400
Received: from [172.17.152.143] ([66.46.95.226]) (authenticated bits=0) by mail1.sxip.com (8.13.5/8.13.5) with ESMTP id k6FHc5R2043533 (version=TLSv1/SSLv3 cipher=RC4-SHA bits=128 verify=NOT); Sat, 15 Jul 2006 10:38:06 -0700 (PDT) (envelope-from dick@sxip.com)
Mime-Version: 1.0 (Apple Message framework v752.2)
Content-Transfer-Encoding: 7bit
Message-Id: <630749EE-9B10-4F84-A3DB-2D83C1D5C2DC@sxip.com>
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
To: Digital Identity Exchange <dix@ietf.org>, IETF HTTP Auth <ietf-http-auth@lists.osafoundation.org>
From: Dick Hardt <dick@sxip.com>
Date: Sat, 15 Jul 2006 13:38:04 -0400
X-Mailer: Apple Mail (2.752.2)
X-Spam-Status: No, score=-2.6 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.1.0
X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on marlin.sxip.com
X-Scanned-By: MIMEDefang 2.54 on 199.60.48.141
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 3002fc2e661cd7f114cb6bae92fe88f1
Cc:
Subject: [dix] DRAFT: WAE BOF minutes
X-BeenThere: dix@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Digital Identity Exchange <dix@ietf.org>
List-Id: Digital Identity Exchange <dix.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/dix>
List-Post: <mailto:dix@ietf.org>
List-Help: <mailto:dix-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
Errors-To: dix-bounces@ietf.org
The meeting started off with the usual agenda review. Agenda was accepted as proposed. The first item was Terminology. Reading assignment: read RFC 2828 Internet Security Glossary http://www.ietf.org/rfc/rfc2828.txt Other Glossaries mentioned: Internet Security Glossary, Version 2 http://www.ietf.org/internet-drafts/draft-shirey-secgloss-v2-04.txt SAMLv2: Glossary http://docs.oasis-open.org/security/saml/v2.0/saml-glossary-2.0-os.pdf "identity gang" lexicon http://identitygang.org/Lexicon The next item was Problems we want to solve (see agenda) A few things were added: - whitelisting - claim minimality - proof of server identity Sam Hartman made his presentation, there were a few questions. There was then discussion on Problems we want to solve. ****** edit here -- right title? same as before Additional problems non-browsing HTTP support support for existing infrastructure Cross Application Credential (XAC) Grouping of problems was then started. Dick Hardt's slide was presented. Ekr proposed grouping the problem up as: EKR1: fix http auth - anti-phishing - passwords and other EKR2: cross-site identity, Eliot's dad, SSO EKR3: Claim & Attribute Transferral More detailed discussion on each problem then ensued: EKR1: Fix HTTP Auth AD questions to audience concluded with: - Liaise w/ W3C on GUI - Liaise w/ APWG - Layer / Arch TBD - can stand alone, but coordinate w/ EKR2 and EKR3 EKR1 does not require EKR2 EKR2: cross-site identifier (Eliot's dad problem was broken off to be EKR4) - raw assertions of identity are easier to trust than attributes - name subordination - existing technology, but glue work Question: Is there glue work to be done by the IETF? - no one thinks there is no glue work, 15 think there is, 15 are not sure 12 ok on work if EKR1 not happening, EKR3:Claim & Attribute Transferral - existing claims and syntaxes may be used - binds attribute assertions to underlying communication - not limited to HTTP Question: Is there glue work to be done here by the IETF? 12 support, a couple object EKR4: - eliot's dad problem part of EKR1 & EKR 2 Discussion if EKR1 and EKR2 required different BOFs at next IETF meeting. Clearly different drafts would be required. Best to combine group working on them. Meeting concluded 15 minutes late. _______________________________________________ dix mailing list dix@ietf.org https://www1.ietf.org/mailman/listinfo/dix
- [dix] DRAFT: WAE BOF minutes Dick Hardt
- Re: [dix] DRAFT: WAE BOF minutes Eliot Lear
- Re: [dix] DRAFT: WAE BOF minutes Ben Laurie
- Re: [dix] DRAFT: WAE BOF minutes Nicolas Williams
- RE: [dix] DRAFT: WAE BOF minutes Hallam-Baker, Phillip
- [dix] the point of a standards process Joaquin Miller
- Re: [dix] DRAFT: WAE BOF minutes Nicolas Williams
- Re: [dix] DRAFT: WAE BOF minutes Eric Rescorla
- Re: [dix] DRAFT: WAE BOF minutes Nicolas Williams
- Re: [dix] DRAFT: WAE BOF minutes Jeffrey Altman
- Re: [dix] DRAFT: WAE BOF minutes Eric Rescorla
- Re: [dix] DRAFT: WAE BOF minutes Jeffrey Altman
- Re: [dix] DRAFT: WAE BOF minutes Dick Hardt
- Re: [dix] DRAFT: WAE BOF minutes Joe Orton
- Re: [dix] DRAFT: WAE BOF minutes Ben Laurie
- Re: [dix] DRAFT: WAE BOF minutes Ben Laurie
- Re: [dix] DRAFT: WAE BOF minutes Jeffrey Altman
- Re: [dix] DRAFT: WAE BOF minutes Ben Laurie
- Re: [dix] DRAFT: WAE BOF minutes Gavin Baumanis
- Re: [dix] DRAFT: WAE BOF minutes Richard Megginson
- [dix] WAE BOF minutes (Final cut) Pete Resnick
- Re: [dix] WAE BOF minutes (Final cut) Pete Resnick