Re: [kitten] Authentication Indicator in Kerberos tickets

Jeffrey Altman <jaltman@secure-endpoints.com> Fri, 03 October 2014 01:06 UTC

Return-Path: <prvs=13533d26ac=jaltman@secure-endpoints.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8DFC31ACFBC for <kitten@ietfa.amsl.com>; Thu, 2 Oct 2014 18:06:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fUHH6CinliYt for <kitten@ietfa.amsl.com>; Thu, 2 Oct 2014 18:06:26 -0700 (PDT)
Received: from mail.secure-endpoints.com (sequoia-grove.ad.secure-endpoints.com [208.125.0.235]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA2FE1ACFB7 for <kitten@ietf.org>; Thu, 2 Oct 2014 18:06:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=secure-endpoints.com; s=MDaemon; t=1412298385; x=1412903185; q=dns/txt; h=DomainKey-Signature:Received:VBR-Info:Message-ID: Date:From:Organization:User-Agent:MIME-Version:To:CC:Subject: References:In-Reply-To:OpenPGP:Content-Type; bh=fxpiNUYexKDs1I87 toADWgH2jc6Dq019mkao1B4XXJA=; b=LlFwEOJ3hDAMJIM9GWIdkG60/zfydm4F 40oJ/tQ5BpXeUykovjayikBBsK6kSu3BIpPhynenizaSzl1nloSnlnI4k8Oxameu lnWhUuIyVCDwDKioAXZlXIHfi0R63rA4IlbVEK7IoaHgnMYuv9Dl1UnZVcZFaldV DqRFtkdEASI=
DomainKey-Signature: a=rsa-sha1; s=MDaemon; d=secure-endpoints.com; c=simple; q=dns; h=message-id:from; b=ccxHR1RxAqb3m/eRdaJ8oFfOk38+lYbaPZhmZtgdVPBR+FTVyjYpAw5c3PG8 vvhcr1h0SGrJXJFWbh5OrxUXETmOrsSmH2gUcT9AozgTn3VYnsjOP972T a+eU8x1easjys1auFESns7OAjlsdFgflp2I6KVRa2WcTzJRu2oYqoE=;
X-MDAV-Result: clean
X-MDAV-Processed: mail.secure-endpoints.com, Thu, 02 Oct 2014 21:06:25 -0400
X-Spam-Processed: mail.secure-endpoints.com, Thu, 02 Oct 2014 21:06:24 -0400
Received: from [172.16.16.54] by secure-endpoints.com (Cipher TLSv1:AES-SHA:128) (MDaemon PRO v14.0.3) with ESMTP id md50000739131.msg for <kitten@ietf.org>; Thu, 02 Oct 2014 21:06:23 -0400
VBR-Info: md=secure-endpoints.com; mc=all; mv=vbr.emailcertification.org;
X-Authenticated-Sender: jaltman@secure-endpoints.com
X-HashCash: 1:22:141003:md50000739131::WtPR8VNDBkrCBXPF:0000AURa
X-Return-Path: prvs=13533d26ac=jaltman@secure-endpoints.com
X-Envelope-From: jaltman@secure-endpoints.com
X-MDaemon-Deliver-To: kitten@ietf.org
Message-ID: <542DF688.4060008@secure-endpoints.com>
Date: Thu, 02 Oct 2014 21:06:16 -0400
From: Jeffrey Altman <jaltman@secure-endpoints.com>
Organization: Secure Endpoints Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2
MIME-Version: 1.0
To: Nico Williams <nico@cryptonector.com>, Nathaniel McCallum <npmccallum@redhat.com>
References: <1409243818.9966.3.camel@redhat.com> <20141002000828.GB12143@localhost>
In-Reply-To: <20141002000828.GB12143@localhost>
OpenPGP: id=92B69A04; url=http://pgp.mit.edu
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha1"; boundary="------------ms010703010009030109050000"
Archived-At: http://mailarchive.ietf.org/arch/msg/kitten/eO7b5RZAhPH7fEnUPjtZG5g67Wo
Cc: kitten@ietf.org
Subject: Re: [kitten] Authentication Indicator in Kerberos tickets
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Oct 2014 01:06:27 -0000

On 10/1/2014 8:08 PM, Nico Williams wrote:
> 
> IMO the WG should adopt this I-D.

+1

> Registrations for the LoA registry suitable for use with this AD would
> be nice.

+1