IETF Logo Mail Archive

Re: Consensus call was Re: Comments on draft-ietf-kitten-krb5-gssapi-prf-03.txt

Nicolas Williams <Nicolas.Williams@sun.com> Fri, 03 June 2005 23:17 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DeLPx-0006DO-RH; Fri, 03 Jun 2005 19:17:33 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DeLPv-0006DA-2K for kitten@megatron.ietf.org; Fri, 03 Jun 2005 19:17:31 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA23845 for <kitten@ietf.org>; Fri, 3 Jun 2005 19:17:28 -0400 (EDT)
Received: from nwkea-mail-1.sun.com ([192.18.42.13]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DeLkE-0004Ki-VU for kitten@ietf.org; Fri, 03 Jun 2005 19:38:31 -0400
Received: from centralmail2brm.Central.Sun.COM ([129.147.62.14]) by nwkea-mail-1.sun.com (8.12.10/8.12.9) with ESMTP id j53NHTKg010465 for <kitten@ietf.org>; Fri, 3 Jun 2005 16:17:29 -0700 (PDT)
Received: from binky.Central.Sun.COM (binky.Central.Sun.COM [129.153.128.104]) by centralmail2brm.Central.Sun.COM (8.12.10+Sun/8.12.10/ENSMAIL, v2.2) with ESMTP id j53NHS04015028 for <kitten@ietf.org>; Fri, 3 Jun 2005 17:17:29 -0600 (MDT)
Received: from binky.Central.Sun.COM (localhost [127.0.0.1]) by binky.Central.Sun.COM (8.13.3+Sun/8.13.3) with ESMTP id j53NHRRN002638; Fri, 3 Jun 2005 18:17:27 -0500 (CDT)
Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.13.3+Sun/8.13.3/Submit) id j53NHRaL002637; Fri, 3 Jun 2005 18:17:27 -0500 (CDT)
Date: Fri, 03 Jun 2005 18:17:27 -0500
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: Sam Hartman <hartmans-ietf@mit.edu>
Message-ID: <20050603231727.GD27456@binky.Central.Sun.COM>
Mail-Followup-To: Sam Hartman <hartmans-ietf@mit.edu>, Jeffrey Altman <jaltman@columbia.edu>, kitten@ietf.org
References: <7210B31550AC934A8637D6619739CE690534F6FB@e2k-sea-xch2.sea-alpha.cisco.com> <429493A6.2040708@columbia.edu> <tslhdgh95wg.fsf@cz.mit.edu> <20050603214112.GV27456@binky.Central.Sun.COM> <tsl64wvnib8.fsf@cz.mit.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <tsl64wvnib8.fsf@cz.mit.edu>
User-Agent: Mutt/1.5.7i
X-Spam-Score: 0.0 (/)
X-Scan-Signature: ffa9dfbbe7cc58b3fa6b8ae3e57b0aa3
Cc: kitten@ietf.org
Subject: Re: Consensus call was Re: Comments on draft-ietf-kitten-krb5-gssapi-prf-03.txt
X-BeenThere: kitten@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/kitten>
List-Post: <mailto:kitten@lists.ietf.org>
List-Help: <mailto:kitten-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@lists.ietf.org?subject=subscribe>
Sender: kitten-bounces@lists.ietf.org
Errors-To: kitten-bounces@lists.ietf.org

On Fri, Jun 03, 2005 at 07:15:23PM -0400, Sam Hartman wrote:
> >>>>> "Nicolas" == Nicolas Williams <Nicolas.Williams@sun.com> writes:
> 
>     Sam> I'm willing to live with this text although it's not great.
>     Sam> I don't have improvements to offer.  The spirit behind the
>     Sam> text is fine.
> 
>     Nicolas> How about pointing out that the lack of useful APIs for
>     Nicolas> inquiring about cryptographic QoPs or specification of
>     Nicolas> policies on the same means that pplications that need to
>     Nicolas> make more than nominal use of GSS_Pseudo_random() should
>     Nicolas> take extra care?
> 
> 
> 
> I'd actually like to stay away from discussion of APIs. m I honestly
> believe that for any mechanism we are likely to standardize and for
> any use of PRF we are likely to standardize there isn't that big of a
> concern beyond the key lifetime concern we're already discussing
> unrealted to PRF.
> 
> So mentioning APIs as a way to find out whether what you are doing is
> OK is fine but mentioning APIsas a requirement seems unnecessary.

Ok, so we should stick with the text you agreed to earlier.  I don't
know how to improve it.

_______________________________________________
Kitten mailing list
Kitten@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/kitten

v2.23.0 | Report a Bug | By Email