Document Action: 'Desired Enhancements to GSSAPI Version 3 Naming' to Informational RFC
The IESG <iesg-secretary@ietf.org> Mon, 18 September 2006 20:49 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GPQ3y-0007H2-C7; Mon, 18 Sep 2006 16:49:58 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GPQ3w-0007GW-Qh for ietf-announce@ietf.org; Mon, 18 Sep 2006 16:49:56 -0400
Received: from ns1.neustar.com ([2001:503:c779:1a::9c9a:108a]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GPQ3w-0007o6-Ir for ietf-announce@ietf.org; Mon, 18 Sep 2006 16:49:56 -0400
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns1.neustar.com (Postfix) with ESMTP id 86C8726E99; Mon, 18 Sep 2006 20:49:56 +0000 (GMT)
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1GPQ3w-0000vn-Du; Mon, 18 Sep 2006 16:49:56 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1GPQ3w-0000vn-Du@stiedprstage1.ietf.org>
Date: Mon, 18 Sep 2006 16:49:56 -0400
X-Spam-Score: -2.8 (--)
X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b
Cc: kitten chair <kitten-chairs@tools.ietf.org>, Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Document Action: 'Desired Enhancements to GSSAPI Version 3 Naming' to Informational RFC
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'Desired Enhancements to GSSAPI Version 3 Naming ' <draft-ietf-kitten-gss-naming-05.txt> as an Informational RFC This document is the product of the Kitten (GSS-API Next Generation) Working Group. The IESG contact persons are Russ Housley and Sam Hartman. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-kitten-gss-naming-05.txt Technical Summary The Generic Security Services API (GSS-API) provides a naming architecture that supports name-based authorization. GSS-API authenticates two named parties to each other. Names can be stored on access control lists to make authorization decisions. Advances in security mechanisms and the way implementers wish to use GSS-API require this model to be extended for the next version of GSS-API. As people move within an organization or change their names, the name authenticated by GSS-API may change. Using some sort of constant identifier would make ACLs more stable. Some mechanisms such as public-key mechanisms do not have a single name to be used across all environments. Other mechanisms such as Kerberos may include group membership or role information as part of authentication. This document motivates extensions to GSS-API naming and describes the extensions under discussion. Working Group Summary This document is a product of the Kitten Working Group. It describes the choices that are facing the Working Group for naming in GSS-API Version 3. Protocol Quality This document was reviewed by Russ Housley for the IESG. _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce for ietf-announce@ietf.org; Mon, 18 Sep 2006 16:49:56 -0400 Received: from ns1.neustar.com ([2001:503:c779:1a::9c9a:108a]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GPQ3w-0007o6-Ir for ietf-announce@ietf.org; Mon, 18 Sep 2006 16:49:56 -0400 Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns1.neustar.com (Postfix) with ESMTP id 86C8726E99; Mon, 18 Sep 2006 20:49:56 +0000 (GMT) Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1GPQ3w-0000vn-Du; Mon, 18 Sep 2006 16:49:56 -0400 X-test-idtracker: no From: The IESG <iesg-secretary@ietf.org> To: IETF-Announce <ietf-announce@ietf.org> Message-Id: <E1GPQ3w-0000vn-Du@stiedprstage1.ietf.org> Date: Mon, 18 Sep 2006 16:49:56 -0400 X-Spam-Score: -2.8 (--) X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b Cc: kitten chair <kitten-chairs@tools.ietf.org>, Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org> Subject: Document Action: 'Desired Enhancements to GSSAPI Version 3 Naming' to Informational RFC X-BeenThere: ietf-announce@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: ietf-announce.ietf.org List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe> List-Post: <mailto:ietf-announce@ietf.org> List-Help: <mailto:ietf-announce-request@ietf.org?subject=help> List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe> Errors-To: ietf-announce-bounces@ietf.org The IESG has approved the following document: - 'Desired Enhancements to GSSAPI Version 3 Naming ' <draft-ietf-kitten-gss-naming-05.txt> as an Informational RFC This document is the product of the Kitten (GSS-API Next Generation) Working Group. The IESG contact persons are Russ Housley and Sam Hartman. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-kitten-gss-naming-05.txt Technical Summary The Generic Security Services API (GSS-API) provides a naming architecture that supports name-based authorization. GSS-API authenticates two named parties to each other. Names can be stored on access control lists to make authorization decisions. Advances in security mechanisms and the way implementers wish to use GSS-API require this model to be extended for the next version of GSS-API. As people move within an organization or change their names, the name authenticated by GSS-API may change. Using some sort of constant identifier would make ACLs more stable. Some mechanisms such as public-key mechanisms do not have a single name to be used across all environments. Other mechanisms such as Kerberos may include group membership or role information as part of authentication. This document motivates extensions to GSS-API naming and describes the extensions under discussion. Working Group Summary This document is a product of the Kitten Working Group. It describes the choices that are facing the Working Group for naming in GSS-API Version 3. Protocol Quality This document was reviewed by Russ Housley for the IESG. _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce