Re: [kitten] Common Authentication Technology Next Generation (kitten) WG Virtual Meeting: 2023-01-17

Thilo Molitor <thilo@eightysoft.de> Fri, 06 January 2023 11:24 UTC

Return-Path: <thilo@eightysoft.de>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1594C14CE23 for <kitten@ietfa.amsl.com>; Fri, 6 Jan 2023 03:24:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAD_ENC_HEADER=0.001, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (4096-bit key) header.d=eightysoft.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tx0S53PlxYsl for <kitten@ietfa.amsl.com>; Fri, 6 Jan 2023 03:24:38 -0800 (PST)
Received: from mail.molitor-dietzel.de (mail.molitor-dietzel.de [5.9.139.211]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X448 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D5A6DC14CF16 for <kitten@ietf.org>; Fri, 6 Jan 2023 03:24:34 -0800 (PST)
Received: from laptop.localnet (everest.eightysoft.de [49.12.6.215]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail.molitor-dietzel.de (Postfix) with ESMTPSA id 189F31C07F3 for <kitten@ietf.org>; Fri, 6 Jan 2023 12:24:27 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=eightysoft.de; s=eightysoft.de; t=1673004267; bh=/swaIqp3Sfu42SOh/WechWIITxZg2IMCsyY2gvpwGzI=; h=From:To:Subject:Date:Message-ID:In-Reply-To:MIME-Version: Content-Transfer-Encoding:Content-Type:From:To:Subject:Date: MIME-Version:Content-Type:Content-Transfer-Encoding: Content-Disposition:Message-ID:List-Unsubscribe: List-Unsubscribe-Post:Sender:In-Reply-To; b=kGELqNtYi5v/o/aI8TxiyTTnP3N96D407OQfHROPHlfXZJGxus6EW8T+Qu5gj6OSy 6Yzjm9Ynsc1qIOhsi6Xkmw/C0jM9PbMENIrWRB9wimbvJEtu1qJBltG21k9EPgMkEs oZ7U9QbT+hheFHdosGAPG9LEFtP86iyTYJfnAogGyevsSdmaSbUfAX+SmI0QKMt4hh N9l6we17KkCgBOaTeS1PlnhP6fipnESfoS9MRMNpy0eJvCJL6alGZPDwNtJ813U/L5 85awy66Ha9iFM8cmoUMJ/WVtUtvVjZRY442+zEnIm+Xd6Bzc5Wf2w/KvRpSo5p489G ALPyqsl9ZPQCZk16SC3PfDWT9bQlvEF//OnSw4uCSKxYj+NUKTEY0xcRr48umsP4Z5 xFf7bcNRGj4nERzhtbKvegkhxVdF+1aRGWfuAGHv6CChXkMydJlxaxxkQly32NQRqT KY0suw5E9iWsqm4QzGANrFE5taFzsfFrucsWsGHf4hzf9llmGPGyQ3RxSrI2ST+imv Eqmu58BA+7JUEzy3ONmTjXzCkM6tCCDJCk+NBei/+yXIow06RwBgqVTDjDa1OD1uMC EGzYMwglFqmxJKTyEBnvqjP+TblzrS2PyolOE1qrxpolBqHolOP3APuaZMjaU1UAKw KeH66OzvTkgCZHGYM4SZaFkI=
From: Thilo Molitor <thilo@eightysoft.de>
To: kitten@ietf.org
Date: Fri, 06 Jan 2023 12:24:25 +0100
Message-ID: <2633909.jqxJiubDLo@laptop>
In-Reply-To: <167276049044.50834.3558418679975820885@ietfa.amsl.com>
References: <167276049044.50834.3558418679975820885@ietfa.amsl.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/Afp_5gpu-81ZujuyB-lBGc7pg2s>
Subject: Re: [kitten] Common Authentication Technology Next Generation (kitten) WG Virtual Meeting: 2023-01-17
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jan 2023 11:24:43 -0000

Hi all,

for XMPP we defined the following two XMPP Extension Protocols (XEPs) to 
modernize SASL:

[1] Is providing general SASL2 support for arbitrary continuation tasks that 
can be used for 2FA etc.

Support for upgrade from one SASL mechanism to a newer one (be it SCRAM-SHA-1 
to SCRAM-SHA-256 or even SCRAM to OPAQUE) is defined in [2].

-tmolitor

[1] https://dyn.eightysoft.de/final/xep-0388.html
[2] https://dyn.eightysoft.de/final/xep-scram-upgrade.html



Am Dienstag, 3. Januar 2023, 16:41:30 CET schrieb IESG Secretary:
> The Common Authentication Technology Next Generation (kitten) WG will hold
> a virtual interim meeting on 2023-01-17 from 17:00 to 18:00 Europe/London
> (17:00 to 18:00 UTC).
> 
> Agenda:
> Discuss possible extensions to SASL framework (aka SASL2), support for 2FA
> in SASL mechanisms, OPAQUE.
> 
> Information about remote participation:
> https://meetings.conf.meetecho.com/interim/?short=6011e6f6-2503-40db-b99b-68
> f88c85a0e9
> 
> _______________________________________________
> Kitten mailing list
> Kitten@ietf.org
> https://www.ietf.org/mailman/listinfo/kitten