Re: [KAML] Re: Chicago bar-BOF summary
Leif Johansson <leifj@it.su.se> Fri, 07 September 2007 18:40 UTC
Return-path: <kaml-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1ITikM-0008O0-4J; Fri, 07 Sep 2007 14:40:02 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1ITikK-0008Nh-5W for kaml@ietf.org; Fri, 07 Sep 2007 14:40:00 -0400
Received: from smtp3.su.se ([130.237.93.228]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1ITikJ-0004sf-PH for kaml@ietf.org; Fri, 07 Sep 2007 14:40:00 -0400
Received: from localhost (localhost [127.0.0.1]) by smtp3.su.se (Postfix) with ESMTP id B05FB3BE6C; Fri, 7 Sep 2007 20:39:58 +0200 (CEST)
Received: from smtp3.su.se ([127.0.0.1]) by localhost (smtp3.su.se [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 12290-01-3; Fri, 7 Sep 2007 20:39:58 +0200 (CEST)
Received: from [10.0.0.11] (ua-83-227-179-169.cust.bredbandsbolaget.se [83.227.179.169]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp3.su.se (Postfix) with ESMTP id 2BD233BE61; Fri, 7 Sep 2007 20:39:57 +0200 (CEST)
Message-ID: <46E19B19.1070000@it.su.se>
Date: Fri, 07 Sep 2007 20:40:25 +0200
From: Leif Johansson <leifj@it.su.se>
User-Agent: Thunderbird 1.5.0.13 (X11/20070824)
MIME-Version: 1.0
To: Scott Cantor <cantor.2@osu.edu>
Subject: Re: [KAML] Re: Chicago bar-BOF summary
References: <46DE5CC1.10204@it.su.se> <8158D751-0EE0-4D58-81DB-549C4A413B68@jpl.nasa.gov> <46E05F96.1090004@anl.gov> <384D95D3-9751-44E5-ADAE-2E403803B665@jpl.nasa.gov> <46E0DC1B.6060405@osu.edu> <46E0FC20.2040106@it.su.se> <64727ACA-079B-4082-BE21-32F3C63D5096@jpl.nasa.gov> <014701c7f177$9f770c50$de6524f0$@2@osu.edu>
In-Reply-To: <014701c7f177$9f770c50$de6524f0$@2@osu.edu>
X-Enigmail-Version: 0.94.2.0
Content-Type: text/plain; charset="ISO-8859-1"
X-Virus-Scanned: by amavisd-new at smtp.su.se
X-Spam-Status: No, hits=-2.262 tagged_above=-99 required=7 tests=[AWL=0.050, BAYES_00=-2.312]
X-Spam-Level:
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 8abaac9e10c826e8252866cbe6766464
Cc: kaml@ietf.org
X-BeenThere: kaml@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about SAML and Kerberos intersections <kaml.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/kaml>, <mailto:kaml-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/kaml>
List-Post: <mailto:kaml@ietf.org>
List-Help: <mailto:kaml-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/kaml>, <mailto:kaml-request@ietf.org?subject=subscribe>
Errors-To: kaml-bounces@ietf.org
Scott Cantor wrote: >> Is it conceivable that we could define a standards compliant SAML >> token, that could be produced in XER, that would also be accepted >> outside the Kerberos community? >> > > If by accepted you mean "usable with any existing SAML code", the answer is > clearly no. > > -- Scott > I've talked to Love Hörnquist Åstrand (who can speak for himself actually) - the heimdal lead - about SAML in the kdc (or any other part of the code for that matter). He was mostly worried about how the integration could happen safely. I think his position would be similar to what a developer working on code never touched by ASN.1 would be: this is a large piece of something I have no control over and no way to audit. So yes Scott, it is true that no SAML library supports XER out of the box today but that is probably a minor problem compared to figuring out how (say) something like heimdal could depend on something like opensaml without creating an unmanageable monster. These are important things to figure out eventually but we should probably keep the horse ahead of the cart for now and concentrate on semantics. Cheers Leif _______________________________________________ KAML mailing list KAML@ietf.org https://www1.ietf.org/mailman/listinfo/kaml
- Re: [KAML] Chicago bar-BOF summary Leif Johansson
- [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- [KAML] Chicago bar-BOF summary Leif Johansson
- RE: [KAML] Chicago bar-BOF summary Josh Howlett
- Re: [KAML] Chicago bar-BOF summary Leif Johansson
- RE: [KAML] Chicago bar-BOF summary Josh Howlett
- Re: [KAML] Re: Chicago bar-BOF summary Tom Scavo
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert
- Re: [KAML] Re: Chicago bar-BOF summary Tom Scavo
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- RE: [KAML] Re: Chicago bar-BOF summary Taylor, Dennis C. (GSFC-720.0)[INDUS]
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Scott Cantor
- Re: [KAML] Re: Chicago bar-BOF summary Leif Johansson
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- RE: [KAML] Re: Chicago bar-BOF summary Scott Cantor
- Re: [KAML] Re: Chicago bar-BOF summary Leif Johansson
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Leif Johansson
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Gerald Beuchelt
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Gerald Beuchelt
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert
- Re: [KAML] Re: Chicago bar-BOF summary Henry B. Hotz
- Re: [KAML] Re: Chicago bar-BOF summary Gerald Beuchelt
- Re: [KAML] Re: Chicago bar-BOF summary Gerald Beuchelt
- Re: [KAML] Re: Chicago bar-BOF summary Douglas E. Engert