Re: Internet Draft: HTTP += SASL
Rick van Rein <rick@openfortress.nl> Thu, 23 January 2020 11:22 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35D50120043 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 23 Jan 2020 03:22:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=openfortress.nl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E-HUM629yg14 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 23 Jan 2020 03:22:19 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B28D12001E for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 23 Jan 2020 03:22:19 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1iuaWL-0008F1-Q2 for ietf-http-wg-dist@listhub.w3.org; Thu, 23 Jan 2020 11:19:33 +0000
Resent-Date: Thu, 23 Jan 2020 11:19:33 +0000
Resent-Message-Id: <E1iuaWL-0008F1-Q2@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <rick@openfortress.nl>) id 1iuaWK-0008EG-9Z for ietf-http-wg@listhub.w3.org; Thu, 23 Jan 2020 11:19:32 +0000
Received: from lb3-smtp-cloud9.xs4all.net ([194.109.24.30]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <rick@openfortress.nl>) id 1iuaWI-0008PI-I0 for ietf-http-wg@w3.org; Thu, 23 Jan 2020 11:19:32 +0000
Received: from popmini.vanrein.org ([83.161.146.46]) by smtp-cloud9.xs4all.net with ESMTP id uaW9ixwO0T6sRuaWAixYRW; Thu, 23 Jan 2020 12:19:22 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=openfortress.nl; i=rick@openfortress.nl; q=dns/txt; s=fame; t=1579778352; h=message-id : date : from : mime-version : to : cc : subject : references : in-reply-to : content-type : content-transfer-encoding : date : from : subject; bh=zwa0UnN08xuIv/FgTUIpnRiAc319gYTqluBPg9tWOwo=; b=UES7iU8rLwFCq/xywy24qeZqd6e1yI8Gs5xyycFkomG7UEJdtDe/+dMC 7mCUxBafHbG6Gud7SPlVhAsiWB2nzVDrEMg39fUMoR9w8JGNBYkbUvKEDz I3JOZ4wOG4Jr8ReQYbeAx+kO29uMIqXOgphwHMT38yTM5aihh0IlxocrU=
Received: by fame.vanrein.org (Postfix, from userid 1006) id 0871125119; Thu, 23 Jan 2020 11:18:52 +0000 (UTC)
Received: from airhead.local (phantom.vanrein.org [83.161.146.46]) by fame.vanrein.org (Postfix) with ESMTPA id 5A19725115; Thu, 23 Jan 2020 11:18:51 +0000 (UTC)
Message-ID: <5E29811A.3080808@openfortress.nl>
Date: Thu, 23 Jan 2020 12:18:50 +0100
From: Rick van Rein <rick@openfortress.nl>
User-Agent: Postbox 3.0.11 (Macintosh/20140602)
MIME-Version: 1.0
To: Ken Murchison <murch@fastmail.com>
CC: ietf-http-wg@w3.org, "Henri Manson (ARPA2)" <henri.manson@arpa2.org>
References: <5E25CAF4.50301@openfortress.nl> <5E26B4EF.4000009@openfortress.nl> <43437445-fd41-2d5d-20e4-c45c9a00aa7a@fastmail.com> <5E296A8C.6050506@openfortress.nl>
In-Reply-To: <5E296A8C.6050506@openfortress.nl>
X-Enigmail-Version: 1.2.3
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Bogosity: Unsure, tests=bogofilter, spamicity=0.520000, version=1.2.4
X-CMAE-Envelope: MS4wfAubF/7TBSTl3wSfqylU4l4c9kD4YBgscm7EBCTrmXcoTMJ74mvQuTilfVt8sukllso3tGgkJBddNFQ1yX7BpjbJBaK3T0SsaTd16elc1vTGSFq1No59 4Sv8f3suElpGzx0OO8EAhPIxE1Ev0+wDhYeCPv7QQ9BIXHEvirx2CKCaOX9+WFSGnJXOcjgbeyFLBA==
Received-SPF: pass client-ip=194.109.24.30; envelope-from=rick@openfortress.nl; helo=lb3-smtp-cloud9.xs4all.net
X-W3C-Hub-Spam-Status: No, score=-4.8
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1iuaWI-0008PI-I0 9c3527a8cfb91746e6b6543c32924098
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Internet Draft: HTTP += SASL
Archived-At: <https://www.w3.org/mid/5E29811A.3080808@openfortress.nl>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37269
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hallo Ken, >> FYI. Are you aware of the previous effort in this area >> https://tools.ietf.org/html/draft-nystrom-http-sasl-12 >From the document history in the datatracker, as well as the last draft, there was interest in improving on the last draft, but it never seems to have concluded. AFAIK our new proposal improves on the raised points, Scalability: - stateless server side (server state passes via the client) - distribution of a sequence of connections is no problem Security: - no fixation on DIGEST-MD5 (compatibility pulls down security) - support for channel binding without fixating protocol layering Cheers, -Rick
- Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Daniel Stenberg
- Re: Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Ken Murchison
- Re: Internet Draft: HTTP += SASL Rick van Rein
- Re: Internet Draft: HTTP += SASL Rick van Rein