Protocol Action: The Simple Public-Key GSS-API Mechanism (SPKM) to Proposed Standard
The IESG <iesg-secretary@CNRI.Reston.VA.US> Thu, 18 July 1996 13:08 UTC
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa07952; 18 Jul 96 9:08 EDT
Received: from ietf.org by CNRI.Reston.VA.US id aa06673; 18 Jul 96 9:08 EDT
Received: from ietf.org by ietf.org id aa06915; 18 Jul 96 9:07 EDT
Received: from ietf.cnri.reston.va.us by ietf.org id aa06809; 18 Jul 96 9:05 EDT
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa07926; 18 Jul 96 9:05 EDT
Received: from ietf.cnri.reston.va.us by CNRI.Reston.VA.US id aa06628; 18 Jul 96 9:04 EDT
Received: from [127.0.0.1] by IETF.CNRI.Reston.VA.US id aa07920; 18 Jul 96 9:04 EDT
To: IETF-Announce:;
Cc: RFC Editor <rfc-editor@isi.edu>
Cc: Internet Architecture Board <iab@isi.edu>
Cc: cat-ietf@mit.edu
Sender: ietf-announce-request@ietf.org
From: The IESG <iesg-secretary@CNRI.Reston.VA.US>
Subject: Protocol Action: The Simple Public-Key GSS-API Mechanism (SPKM) to Proposed Standard
Date: Thu, 18 Jul 1996 09:04:46 -0400
X-Orig-Sender: scoya@CNRI.Reston.VA.US
Message-ID: <9607180904.aa07920@IETF.CNRI.Reston.VA.US>
The IESG has approved the Internet-Draft "The Simple Public-Key GSS-API Mechanism (SPKM)" <draft-ietf-cat-spkmgss-06.txt> as a Proposed Standard. This document is the product of the Common Authentication Technology Working Group. The IESG contact person is Jeffrey Schiller. Technical Summary This document describes a mechanism to be used with the Generic Security Service API (GSSAPI, RFC1508, RFC1509). It provides for authentication, integrity, confidentiality and non-repudiation within the context of GSSAPI. It is based on the use of public key encryption technology for digital signatures and key distribution. It provides for the negotiation of the actual cryptographic algorithms to be employed between communicating entities. It makes use of X.509 style certificates but does not specify a particular key hierarchy. The two end points communicating must have a common hierarchy in common in order for this mechanism to operate, however a particular hierarchy is not legislated by this document. Working Group Summary The CAT working group came to consensus reasonably quickly on these documents and no comments were received during IETF last call. Protocol Quality Jeff Schiller reviewed this document for the IESG and found it to be competent and reasonable. By adding a public key based mechanism to the repertoire of mechanisms available under the GSSAPI, this document adds value to GSSAPI itself.