Re: WGLC on draft-ietf-kitten-rfc2853bis-04
Wesley Leggette <wleggette@cleversafe.com> Tue, 22 July 2008 03:21 UTC
Return-Path: <kitten-bounces@ietf.org>
X-Original-To: kitten-archive@megatron.ietf.org
Delivered-To: ietfarch-kitten-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9864D3A693C; Mon, 21 Jul 2008 20:21:45 -0700 (PDT)
X-Original-To: kitten@core3.amsl.com
Delivered-To: kitten@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C45C13A67AE for <kitten@core3.amsl.com>; Mon, 21 Jul 2008 20:21:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lvqUlcsr0VhH for <kitten@core3.amsl.com>; Mon, 21 Jul 2008 20:21:42 -0700 (PDT)
Received: from out002.atlarge.net (out002.atlarge.net [129.41.63.60]) by core3.amsl.com (Postfix) with ESMTP id 58FD23A6836 for <kitten@ietf.org>; Mon, 21 Jul 2008 20:21:42 -0700 (PDT)
Received: from csi-01-ex.atlarge.net ([10.100.50.47]) by out002.atlarge.net with Microsoft SMTPSVC(6.0.3790.1830); Mon, 21 Jul 2008 22:17:25 -0500
Received: from 10.100.70.6 ([10.100.70.6]) by csi-01-ex.atlarge.net ([10.100.50.47]) via Exchange Front-End Server owa.atlarge.net ([10.100.50.148]) with Microsoft Exchange Server HTTP-DAV ; Tue, 22 Jul 2008 03:17:25 +0000
User-Agent: Microsoft-Entourage/12.0.0.071130
Date: Mon, 21 Jul 2008 22:22:17 -0500
Subject: Re: WGLC on draft-ietf-kitten-rfc2853bis-04
From: Wesley Leggette <wleggette@cleversafe.com>
To: kitten@ietf.org
Message-ID: <C4AABC99.79C7%wleggette@cleversafe.com>
Thread-Topic: WGLC on draft-ietf-kitten-rfc2853bis-04
Thread-Index: AcjrqiSJUDlMG6O1wU2usA4X6ChrNw==
Mime-version: 1.0
X-OriginalArrivalTime: 22 Jul 2008 03:17:25.0934 (UTC) FILETIME=[770C14E0:01C8EBA9]
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: kitten-bounces@ietf.org
Errors-To: kitten-bounces@ietf.org
By way of introduction, I am a senior software developer at Cleversafe, Inc. We are developing a "dispersed" storage technology called "dsNet" and have been using GSS-API within our new security framework. Our code is written in Java and the aspects of GSS-API we are especially interested in is the authentication negotiation with SPNEGO and credential delegation features. We anticipate migrating to Kerberos and SPKM authentication but realize that our users will require support for password-based authentication as well and to that end have implemented a password-based authentication mechanism based heavily on SSHv2. Working with GSS-API on an alternate mechanism (especially one that requires multiple exchanges) has uncovered a few bugs in the Java GSS-API and SPNEGO implementations, which is somewhat interesting. (We plan on taking this up with Sun directly. I just mentioned it here for color.) But to the point, because we have decided to integrate heavily with the Java Authentication and Authorization Service we've found that the major shortcoming of the GSS-API Java bindings is the lack of a mechanism independent way of obtaining java Subject objects for both the local and delegated credentials of a GSSContext. I can anticipate that Java-specific (especially JAAS-specific) objects were purposefully omitted from the Java bindings. Was this the case and if so what was the rationale? If this was not purposefully omitted I would request that this be considered for this draft. Wesley Leggette Senior Software Developer Cleversafe, Inc. http://www.cleversafe.com _______________________________________________ Kitten mailing list Kitten@ietf.org https://www.ietf.org/mailman/listinfo/kitten
- WGLC on draft-ietf-kitten-rfc2853bis-04 Shawn M Emery
- Re: WGLC on draft-ietf-kitten-rfc2853bis-04 Wesley Leggette
- Re: WGLC on draft-ietf-kitten-rfc2853bis-04 Mayank Upadhyay
- Re: WGLC on draft-ietf-kitten-rfc2853bis-04 Wesley Leggette