Re: [kitten] [saag] AD sponsoring draft-hansen-scram-sha256

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 24 February 2015 11:56 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87AD41A19F7 for <kitten@ietfa.amsl.com>; Tue, 24 Feb 2015 03:56:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QZruStrxOSSC for <kitten@ietfa.amsl.com>; Tue, 24 Feb 2015 03:56:51 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 341461A03A9 for <kitten@ietf.org>; Tue, 24 Feb 2015 03:56:51 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id E424DBED4; Tue, 24 Feb 2015 11:56:49 +0000 (GMT)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CaTd-eN3L0DB; Tue, 24 Feb 2015 11:56:48 +0000 (GMT)
Received: from [10.87.48.73] (unknown [86.46.27.159]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 71258BED8; Tue, 24 Feb 2015 11:56:47 +0000 (GMT)
Message-ID: <54EC66FF.50603@cs.tcd.ie>
Date: Tue, 24 Feb 2015 11:56:47 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: Tony Hansen <tony@att.com>
References: <54DC00D0.2050900@cs.tcd.ie>
In-Reply-To: <54DC00D0.2050900@cs.tcd.ie>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/drpAdqs0dPdmh6xTImDbzcVs9W4>
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] [saag] AD sponsoring draft-hansen-scram-sha256
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Feb 2015 11:56:52 -0000

(list reduced to kitten)

On 12/02/15 01:24, Stephen Farrell wrote:
> 
> Hiya,
> 
> I've been asked to AD sponsor draft-hansen-scram-sha256 [1] as it's
> needed for some work in http-auth but doesn't quite fit with any
> current WG. I plan to start an IETF LC for that shortly, but please
> do let me know if there are any issues.
> 
> This was previously discussed on the kitten WG list, so (with
> the WG chairs' permission) I'd ask that you send any comments
> there if you've any before I start the IETF LC. (Reply-to is
> set to the kitten WG list.)

So I've seen positive responses, and some tweaks suggested which
are all to the good, so I'm happy to sponsor this work.

But in addition, there were two substantive issues that ought be
resolved before IETF LC:

1. a new channel binding or requiring tls-session-hash (and I guess
   some explanatory text about why that is good/needed)

2. justify and possibly mandate an iteration count with which folks
   are happy

Tony - could you propose text for #1 and #2 or start threads to
resolve them. Feel free to shoot out any revisions you think make
sense whilst doing that. And once we're done with those, and have
a draft that reflects the consensus then I'll start IETF LC.

Cheers,
S.


> 
> Thanks,
> S.
> 
> [1] https://tools.ietf.org/html/draft-hansen-scram-sha256
> 
> _______________________________________________
> saag mailing list
> saag@ietf.org
> https://www.ietf.org/mailman/listinfo/saag
> 
>