IETF Logo Mail Archive

Re: [kitten] Channel binding language changes Re: Status of draft-ietf-kitten-sasl-oauth?

William Mills <wmills@yahoo-inc.com> Thu, 16 August 2012 22:58 UTC

Return-Path: <wmills@yahoo-inc.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8765211E808E for <kitten@ietfa.amsl.com>; Thu, 16 Aug 2012 15:58:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.546
X-Spam-Level:
X-Spam-Status: No, score=-17.546 tagged_above=-999 required=5 tests=[AWL=0.052, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_DEF_WHITELIST=-15]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id erm7T1HZLt8N for <kitten@ietfa.amsl.com>; Thu, 16 Aug 2012 15:58:56 -0700 (PDT)
Received: from nm28-vm0.bullet.mail.ne1.yahoo.com (nm28-vm0.bullet.mail.ne1.yahoo.com [98.138.91.22]) by ietfa.amsl.com (Postfix) with SMTP id D3C2711E808A for <kitten@ietf.org>; Thu, 16 Aug 2012 15:58:55 -0700 (PDT)
Received: from [98.138.90.50] by nm28.bullet.mail.ne1.yahoo.com with NNFMP; 16 Aug 2012 22:58:44 -0000
Received: from [98.138.87.12] by tm3.bullet.mail.ne1.yahoo.com with NNFMP; 16 Aug 2012 22:58:44 -0000
Received: from [127.0.0.1] by omp1012.mail.ne1.yahoo.com with NNFMP; 16 Aug 2012 22:58:44 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 564246.52578.bm@omp1012.mail.ne1.yahoo.com
Received: (qmail 19368 invoked by uid 60001); 16 Aug 2012 22:58:44 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo-inc.com; s=ginc1024; t=1345157924; bh=XAP/GT/ZkfoNN8P6KNDaWcUNqov9ECYau0O/OLkJyw4=; h=X-YMail-OSG:Received:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=IkoQ/S7TBc6Ni5gLz+VafPzwiG9k3IDXz506y49l8Diwnljh8d7ihDktvhas/NUBjQCz4W3GBdNAeOiyeYdSNMSz+qpayFGyNXdRqKbwixfOB+BUhVYWY1B5yBr39SfApkbvcoAM/EF5FYiVVfDdWkdeZnUxQw1ODN0b0h2hMsQ=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=ginc1024; d=yahoo-inc.com; h=X-YMail-OSG:Received:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=aDElX2U8M/pMTsrHp2W7dOAfjRVUw/arRL/C7RVY1SJ39Vj1U8ROlIIKh6GNGbL3f2GItuQK5ifm6DP8ePQ4BqJb8t2KW5Eot3KwWnCA3VLZ7FhbxdQ3+T3wVLcO9P3DyRIDBEb03rJHCUx6lTQCHIYGzoqegFdEgRkcxKO1ZoI=;
X-YMail-OSG: EarWZBcVM1llv1qKUAM2_rckkbern22cIAihcVmDVhNECyV SiUYwGyBE2VtVP3_rmhIZzWGrK35aRRafDQLKl4_3dAbD7bfGPIQPuCCTFAa xUqQ1TRwTfP.N2Auobw2zRqVkQBuEN5hhZ5SrB7dQcGLtnETqQTkcRK6zl5P N_lmOIBM1GWtU3L3dxA_CeJHPykkmHuCQKe9Xa_rsFIEh2ZtRwI068fpt5jt 6eescs_uTvloi_V5dHhTt8pH7saBdOq2y28O9U7bxoJHezdrXAITz40HacLC 3fKerTK2YmziFNQ7hP1x_YLvWR5oseLvxxFpwo9ABjoMK5HxCtdY3vgiZuCZ DCe3HnnXa5aumRCkQH8eqCjiWtZgjGXhCV5m5t9ENuK1kqJmxhA_Pw2Bt6At _kq07LAJKv6Tl2SfZTeij_TeGtpuZpGZ8CAR9lZ4jYVhjpISzl3lOX671zcK wUjBD.Q--
Received: from [209.131.62.113] by web31813.mail.mud.yahoo.com via HTTP; Thu, 16 Aug 2012 15:58:44 PDT
X-RocketYMMF: william_john_mills
X-Mailer: YahooMailWebService/0.8.121.416
References: <CAPe4CjoPHN4QJWxXj_q39QuT3FuPmuw8L0WAYyGc0LOseF4teQ@mail.gmail.com> <1344548823.23915.YahooMailNeo__7438.20652501217$1344548833$gmane$org@web31808.mail.mud.yahoo.com> <87hasbd4yq.fsf@latte.josefsson.org> <1345132899.4152.YahooMailNeo@web31806.mail.mud.yahoo.com> <CAK3OfOixaSiWYYQ_5Rswbc9xjQkGXYJa84998fc0L6Wbv6ZyGw@mail.gmail.com>
Message-ID: <1345157924.15638.YahooMailNeo@web31813.mail.mud.yahoo.com>
Date: Thu, 16 Aug 2012 15:58:44 -0700
From: William Mills <wmills@yahoo-inc.com>
To: Nico Williams <nico@cryptonector.com>
In-Reply-To: <CAK3OfOixaSiWYYQ_5Rswbc9xjQkGXYJa84998fc0L6Wbv6ZyGw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="767760015-466593134-1345157924=:15638"
Cc: "kitten@ietf.org" <kitten@ietf.org>, Simon Josefsson <simon@josefsson.org>
Subject: Re: [kitten] Channel binding language changes Re: Status of draft-ietf-kitten-sasl-oauth?
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: William Mills <wmills@yahoo-inc.com>
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Aug 2012 22:58:56 -0000

Fixed the RFC reference, thanks.





>________________________________
> From: Nico Williams <nico@cryptonector.com>
>To: William Mills <wmills@yahoo-inc.com> 
>Cc: Simon Josefsson <simon@josefsson.org>; "kitten@ietf.org" <kitten@ietf.org> 
>Sent: Thursday, August 16, 2012 1:09 PM
>Subject: Re: [kitten] Channel binding language changes Re: Status of draft-ietf-kitten-sasl-oauth?
> 
>On Thu, Aug 16, 2012 at 11:01 AM, William Mills <wmills@yahoo-inc.com> wrote:
>> On the channel binding stuff I changed the language to refer to the
>> definition in the channel binding spec:
>>
>>     The channel binding payload is the raw data from the channel binding
>>     type. For example, if the client is using tls-unique for channel binding
>> then
>>     the raw channel binding data is the TLS finished message as specified in
>> section
>>     3.1 of <xref target="RFC5056"/>
>
>It's actually RFC5929 that specifies tls-unique.
>
>RFC5056 recommends prefixing the channel bindint type name, ':', to the CB data.
>
>> I also struck the concept entirely of hashing the channel binding payload if
>> it's large.
>
>Yeah, don't do that: you end up having to provide hash agility.  The
>tls-server-end-point and tls-unique CB types are already fixed-sized
>and small anyways.
>
>Nico
>--
>
>
>

v2.23.0 | Report a Bug | By Email