Internet Draft: HTTP += SASL
Rick van Rein <rick@openfortress.nl> Tue, 21 January 2020 08:25 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DAD01200B6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 21 Jan 2020 00:25:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=openfortress.nl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lVU0JWxKsuXy for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 21 Jan 2020 00:25:22 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8646120071 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 21 Jan 2020 00:25:21 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1itop0-00006j-Ln for ietf-http-wg-dist@listhub.w3.org; Tue, 21 Jan 2020 08:23:38 +0000
Resent-Date: Tue, 21 Jan 2020 08:23:38 +0000
Resent-Message-Id: <E1itop0-00006j-Ln@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <rick@openfortress.nl>) id 1itooz-00005g-Cg for ietf-http-wg@listhub.w3.org; Tue, 21 Jan 2020 08:23:37 +0000
Received: from lb1-smtp-cloud9.xs4all.net ([194.109.24.22]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <rick@openfortress.nl>) id 1itoov-00010C-Ag for ietf-http-wg@w3.org; Tue, 21 Jan 2020 08:23:37 +0000
Received: from popmini.vanrein.org ([83.161.146.46]) by smtp-cloud9.xs4all.net with ESMTP id toolikcTVT6sRtoomipgW5; Tue, 21 Jan 2020 09:23:24 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=openfortress.nl; i=rick@openfortress.nl; q=dns/txt; s=fame; t=1579594997; h=message-id : date : from : mime-version : to : cc : subject : references : in-reply-to : content-type : content-transfer-encoding : date : from : subject; bh=Jc70LLsVEgj9skQU5Sf1KTSl+DtaqoLu23fKwJjNDBY=; b=gm4xCnr+nsnxfzDxQ/98nev27TitT5MGILu8BWbJpgItK5QekIuSsLfD eoL/iWK3VnQjsGBJj6+nb15IK9GH/X/92AVElr96x5PCitGm+jhkBZ7cW1 TI9cAs4hWBq115usRnBdfRVoe5dJs5i1CgHQTDU/0yraadfk8VWAvs8nc=
Received: by fame.vanrein.org (Postfix, from userid 1006) id 7440824064; Tue, 21 Jan 2020 08:23:17 +0000 (UTC)
Received: from airhead.local (phantom.vanrein.org [83.161.146.46]) by fame.vanrein.org (Postfix) with ESMTPA id 3985A24059; Tue, 21 Jan 2020 08:23:13 +0000 (UTC)
Message-ID: <5E26B4EF.4000009@openfortress.nl>
Date: Tue, 21 Jan 2020 09:23:11 +0100
From: Rick van Rein <rick@openfortress.nl>
User-Agent: Postbox 3.0.11 (Macintosh/20140602)
MIME-Version: 1.0
To: "HTTPbis WG (IETF)" <ietf-http-wg@w3.org>
CC: "Henri Manson (ARPA2)" <henri.manson@arpa2.org>
References: <5E25CAF4.50301@openfortress.nl>
In-Reply-To: <5E25CAF4.50301@openfortress.nl>
X-Enigmail-Version: 1.2.3
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Bogosity: Unsure, tests=bogofilter, spamicity=0.520000, version=1.2.4
X-CMAE-Envelope: MS4wfBFzRq9d2zCkmRQwjEfa/eHbKr2ZEiITQn9FEp0t2qymLPIvOh1DgyEPeQ+P5ks1ONWbsuAtpiUiD5CJoYWPTtOYeS9dFdEUnohMvWDrsSFtHBcgWgwz Z1XrP9P1hOux0yRR6Dhk8XbOkHPihmcLsQVQm7wGGySNwjJfZKHDqxjLgnJqb9Adm20hGsAct27C6Q==
Received-SPF: pass client-ip=194.109.24.22; envelope-from=rick@openfortress.nl; helo=lb1-smtp-cloud9.xs4all.net
X-W3C-Hub-Spam-Status: No, score=-3.4
X-W3C-Hub-Spam-Report: BAYES_05=-0.5, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1itoov-00010C-Ag bb57e0cf1a6fa9b800239344c024065d
X-Original-To: ietf-http-wg@w3.org
Subject: Internet Draft: HTTP += SASL
Archived-At: <https://www.w3.org/mid/5E26B4EF.4000009@openfortress.nl>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37261
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hello, The following I-D is a specification that adds SASL authentication to HTTP. It allows sharing security mechanisms with other protocols such as for email, and resolve security matters in transport-level software rather than in applications. I believe this offers dramatic benefits. An informal example run is presented on http://internetwide.org/blog/2018/11/15/somethings-cooking-4.html We are looking forward to hearing your opinions to this proposal. Thanks, Rick van Rein InternetWide.org ----- A new version of I-D, draft-vanrein-httpauth-sasl-03.txt has been successfully submitted by Rick van Rein and posted to the IETF repository. Name: draft-vanrein-httpauth-sasl Revision: 03 Title: HTTP Authentication with SASL Document date: 2020-01-20 Group: Individual Submission Pages: 12 URL: https://www.ietf.org/internet-drafts/draft-vanrein-httpauth-sasl-03.txt Status: https://datatracker.ietf.org/doc/draft-vanrein-httpauth-sasl/ Htmlized: https://tools.ietf.org/html/draft-vanrein-httpauth-sasl-03 Htmlized: https://datatracker.ietf.org/doc/html/draft-vanrein-httpauth-sasl Diff: https://www.ietf.org/rfcdiff?url2=draft-vanrein-httpauth-sasl-03 Abstract: Most application-level protocols standardise their authentication exchanges under the SASL framework. HTTP has taken another course, and often ends up replicating the work to allow individual mechanisms. This specification adopts full SASL authentication into HTTP. The IETF Secretariat
- Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Daniel Stenberg
- Re: Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Ken Murchison
- Re: Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Rick van Rein