[Ietf-http-auth] Discussion and Review of draft-hartman-webauth-phishing
Sam Hartman <hartmans-ietf@mit.edu> Tue, 19 August 2008 16:45 UTC
Return-Path: <hartmans@mit.edu>
X-Original-To: ietf-http-auth@lists.osafoundation.org
Delivered-To: ietf-http-auth@lists.osafoundation.org
Received: from laweleka.osafoundation.org (laweleka.osafoundation.org [204.152.186.98]) by leilani.osafoundation.org (Postfix) with ESMTP id 36FD780D86 for <ietf-http-auth@lists.osafoundation.org>; Tue, 19 Aug 2008 09:45:01 -0700 (PDT)
Received: from localhost (laweleka.osafoundation.org [127.0.0.1]) by laweleka.osafoundation.org (Postfix) with ESMTP id 3D3F514221E for <ietf-http-auth@lists.osafoundation.org>; Tue, 19 Aug 2008 09:45:00 -0700 (PDT)
X-Virus-Scanned: by amavisd-new and clamav at osafoundation.org
X-Spam-Score: -1.404
X-Spam-Level:
X-Spam-Status: No, score=-1.404 tagged_above=-50 required=4 tests=[AWL=0.599, BAYES_00=-2.599, SPF_SOFTFAIL=0.596]
Received: from laweleka.osafoundation.org ([127.0.0.1]) by localhost (laweleka.osafoundation.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2dClFPXvkuug for <ietf-http-auth@lists.osafoundation.org>; Tue, 19 Aug 2008 09:44:49 -0700 (PDT)
Received: from carter-zimmerman.suchdamage.org (carter-zimmerman.suchdamage.org [69.25.196.178]) by laweleka.osafoundation.org (Postfix) with ESMTP id DD21A142219 for <ietf-http-auth@lists.osafoundation.org>; Tue, 19 Aug 2008 09:44:48 -0700 (PDT)
Received: by carter-zimmerman.suchdamage.org (Postfix, from userid 8042) id 5077B4286; Tue, 19 Aug 2008 12:44:31 -0400 (EDT)
From: Sam Hartman <hartmans-ietf@mit.edu>
To: alexey.melnikov@isode.com, ietf-http-auth@lists.osafoundation.org
Date: Tue, 19 Aug 2008 12:44:31 -0400
Message-ID: <tslskt1q7io.fsf@mit.edu>
User-Agent: Gnus/5.110006 (No Gnus v0.6) Emacs/21.4 (gnu/linux)
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=-=-="
Subject: [Ietf-http-auth] Discussion and Review of draft-hartman-webauth-phishing
X-BeenThere: ietf-http-auth@osafoundation.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-http-auth.osafoundation.org
List-Unsubscribe: <http://lists.osafoundation.org/cgi-bin/mailman/listinfo/ietf-http-auth>, <mailto:ietf-http-auth-request@osafoundation.org?subject=unsubscribe>
List-Archive: <http://lists.osafoundation.org/pipermail/ietf-http-auth>
List-Post: <mailto:ietf-http-auth@osafoundation.org>
List-Help: <mailto:ietf-http-auth-request@osafoundation.org?subject=help>
List-Subscribe: <http://lists.osafoundation.org/cgi-bin/mailman/listinfo/ietf-http-auth>, <mailto:ietf-http-auth-request@osafoundation.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Aug 2008 16:45:01 -0000
Alexey, I've completed a number of revisions to draft-hartman-webauth-phishing and believe that the document is ready for review and discussion prior to a second publication request and last call. There have been fairly significant text changes although I think the core concepts and requirements remain the same. As such, we need significant re-review from those who have reviewed previous versions. In addition, two points require explicit consensus discussion. First, section 1.1 contains a purpose statement that I believe would need to be included in an IETF wide last call and would need to achieve community consensus. Secondly, the requirement for mutual authentication has been somewhat contentious; I believe we need explicit discussion of that requirement. I think the best thing to do at this point is to ask for review from the http working group, saag, secdir, and apps discussion list and direct comments to ietf-http-auth. Then once you're satisfied, we take this back to Lisa. Does that sound reasonable?
--- Begin Message --- --- End Message ---
- Re: [Ietf-http-auth] Discussion and Review of dra… Sam Hartman
- [Ietf-http-auth] Discussion and Review of draft-h… Sam Hartman