Re: [http-auth] http-auth BOF
Nico Williams <nico@cryptonector.com> Tue, 11 September 2012 22:41 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: http-auth@ietfa.amsl.com
Delivered-To: http-auth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 611E521E804A for <http-auth@ietfa.amsl.com>; Tue, 11 Sep 2012 15:41:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZOIoCRP5zeuX for <http-auth@ietfa.amsl.com>; Tue, 11 Sep 2012 15:41:28 -0700 (PDT)
Received: from homiemail-a70.g.dreamhost.com (caiajhbdccac.dreamhost.com [208.97.132.202]) by ietfa.amsl.com (Postfix) with ESMTP id 94E6721E8049 for <http-auth@ietf.org>; Tue, 11 Sep 2012 15:41:28 -0700 (PDT)
Received: from homiemail-a70.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a70.g.dreamhost.com (Postfix) with ESMTP id 0F247768064 for <http-auth@ietf.org>; Tue, 11 Sep 2012 15:41:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type; s=cryptonector.com; bh=P58k8I7kNF7DEeqUi7UL qSaxl6Q=; b=Rayr2Zd8s851bDwK0U2syGiANOg0AOoRugYD1cgydDLfs587VBZ5 FTrKSxZPWtrJD4zShbsCa03uoe43R1+JirPaZ9IaQT3NJSKIelEEN/QFqeVWaS03 LbLblKYl8eGYT7jyaX6JrQdHiw5t9qEvbZpCnYwI48m8UH02XZNZ/jY=
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a70.g.dreamhost.com (Postfix) with ESMTPSA id EA140768059 for <http-auth@ietf.org>; Tue, 11 Sep 2012 15:41:27 -0700 (PDT)
Received: by pbbrr4 with SMTP id rr4so1438570pbb.31 for <http-auth@ietf.org>; Tue, 11 Sep 2012 15:41:27 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.68.228.234 with SMTP id sl10mr13370805pbc.25.1347403287653; Tue, 11 Sep 2012 15:41:27 -0700 (PDT)
Received: by 10.68.20.194 with HTTP; Tue, 11 Sep 2012 15:41:27 -0700 (PDT)
In-Reply-To: <504F451E.6070805@ieca.com>
References: <504F451E.6070805@ieca.com>
Date: Tue, 11 Sep 2012 17:41:27 -0500
Message-ID: <CAK3OfOjOaNd3a=_5mP_GqVB1ynt=KbwLHm2aiTuXXBsMmhPr0w@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Sean Turner <turners@ieca.com>
Content-Type: text/plain; charset="UTF-8"
Cc: http-auth@ietf.org
Subject: Re: [http-auth] http-auth BOF
X-BeenThere: http-auth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: HTTP authentication methods <http-auth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/http-auth>, <mailto:http-auth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/http-auth>
List-Post: <mailto:http-auth@ietf.org>
List-Help: <mailto:http-auth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-auth>, <mailto:http-auth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Sep 2012 22:41:29 -0000
On Tue, Sep 11, 2012 at 9:05 AM, Sean Turner <turners@ieca.com> wrote: > As you're no doubt aware, http-bis chucked the http-auth mechanisms out in > Vancouver. I'd like to have a forum to discuss http-auth options and > ultimately publish them. One idea is to create a WG in the security area > and publish the proposals on the experimental track. There's four that I've > seen (in no particular order): > > - draft-oiwa-* > - draft-farrell-httpbis-hoba > - draft-melnikov-httpbis-scram-auth > - draft-williams-httpbis-auth-classification > > Does this sounds like a plan? If it does, then let's chat about it here. Actually, please include draft-williams-http-rest-auth (RESTauth, successor to REST-GSS) and remove draft-williams-httpbis-auth-classification. (No one seems interested in draft-williams-httpbis-auth-classification. Whereas there is some interest in RESTauth (some in the IETF and at least one party outside interested in deploying it in the enterprise.) Nico --
- [http-auth] http-auth BOF Sean Turner
- Re: [http-auth] http-auth BOF Julian Reschke
- Re: [http-auth] http-auth BOF Sean Turner
- Re: [http-auth] http-auth BOF Yoav Nir
- Re: [http-auth] http-auth BOF Tim
- Re: [http-auth] http-auth BOF Nico Williams
- Re: [http-auth] http-auth BOF Yutaka OIWA
- Re: [http-auth] http-auth BOF Julian Reschke
- Re: [http-auth] http-auth BOF Yoav Nir
- Re: [http-auth] http-auth BOF Julian Reschke
- Re: [http-auth] http-auth BOF Yutaka OIWA
- Re: [http-auth] http-auth BOF Yoav Nir
- Re: [http-auth] http-auth BOF Leif Johansson
- Re: [http-auth] http-auth BOF Nico Williams
- Re: [http-auth] http-auth BOF Harry Halpin
- Re: [http-auth] http-auth BOF Nico Williams
- Re: [http-auth] http-auth BOF Cameron Jones
- Re: [http-auth] http-auth BOF KIHARA, Boku
- Re: [http-auth] http-auth BOF Peter Saint-Andre
- Re: [http-auth] http-auth BOF Julian Reschke
- Re: [http-auth] http-auth BOF Cameron Jones
- Re: [http-auth] http-auth BOF Cameron Jones
- Re: [http-auth] http-auth BOF Peter Saint-Andre
- Re: [http-auth] http-auth BOF Cameron Jones
- Re: [http-auth] http-auth BOF KIHARA, Boku
- Re: [http-auth] http-auth BOF Martin J. Dürst
- Re: [http-auth] http-auth BOF Nico Williams
- Re: [http-auth] http-auth BOF Peter Saint-Andre
- Re: [http-auth] http-auth BOF Martin J. Dürst