Re: Proposed Charter (Draft #3)
Wyllys Ingersoll <wyllys.ingersoll@sun.com> Mon, 13 September 2004 13:35 UTC
Return-Path: <kitten-bounces@lists.ietf.org>
Received: from solipsist-nation ([unix socket]) by solipsist-nation (Cyrus v2.1.5-Debian2.1.5-1) with LMTP; Mon, 13 Sep 2004 09:35:14 -0400
X-Sieve: CMU Sieve 2.2
Return-Path: <kitten-bounces@lists.ietf.org>
Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by suchdamage.org (Postfix) with ESMTP id 38DD613230 for <ietf.kitten@mailboxes.suchdamage.org>; Mon, 13 Sep 2004 09:35:14 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1C6quS-00057G-TP; Mon, 13 Sep 2004 09:30:20 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1C6qs2-0004ag-1d for kitten@megatron.ietf.org; Mon, 13 Sep 2004 09:27:51 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA28694 for <kitten@ietf.org>; Mon, 13 Sep 2004 09:27:48 -0400 (EDT)
Received: from nwkea-mail-2.sun.com ([192.18.42.14]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1C6qwi-0008Gx-Ju for kitten@ietf.org; Mon, 13 Sep 2004 09:32:42 -0400
Received: from jurassic.eng.sun.com ([129.146.85.105]) by nwkea-mail-2.sun.com (8.12.10/8.12.9) with ESMTP id i8DDRh35001379; Mon, 13 Sep 2004 06:27:43 -0700 (PDT)
Received: from [192.9.61.32] (punchin-wyllys.SFBay.Sun.COM [192.9.61.32]) by jurassic.eng.sun.com (8.13.1+Sun/8.13.1) with ESMTP id i8DDRgSK456799; Mon, 13 Sep 2004 06:27:42 -0700 (PDT)
Message-ID: <41459F79.8010107@sun.com>
Date: Mon, 13 Sep 2004 09:24:09 -0400
From: Wyllys Ingersoll <wyllys.ingersoll@sun.com>
User-Agent: Mozilla Thunderbird 0.7.1 (X11/20040630)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Jeffrey Altman <jaltman@columbia.edu>
References: <41422765.7010807@columbia.edu>
In-Reply-To: <41422765.7010807@columbia.edu>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 3fbd9b434023f8abfcb1532abaec7a21
Content-Transfer-Encoding: 7bit
Cc: kitten@ietf.org
Subject: Re: Proposed Charter (Draft #3)
X-BeenThere: kitten@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/kitten>
List-Post: <mailto:kitten@lists.ietf.org>
List-Help: <mailto:kitten-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@lists.ietf.org?subject=subscribe>
Sender: kitten-bounces@lists.ietf.org
Errors-To: kitten-bounces@lists.ietf.org
X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on solipsist-nation.suchdamage.org
X-Spam-Status: No, hits=-4.9 required=5.0 tests=BAYES_00 autolearn=ham version=2.63
X-Spam-Level:
Status: RO
Content-Length: 6044
Lines: 166
I'm volunteering to edit the new SPNEGO document. -Wyllys Jeffrey Altman wrote: > * incorporates proposed text change from Nico > > * incorporates new work item: domain service principal name > > any other comments? > > >------------------------------------------------------------------------ > >Proposed Charter > >The Generic Security Services API [RFC 2743, RFC 2744] provides an API >for applications to set up security contexts and to use these contexts >for per-message protection services. The Common Authentication Technology >Next Generation Working Group (Kitten) will work on standardizing >extensions and improvements to the core GSSAPI specification and language >bindings that the IETF believes are necessary based on experience using >GSSAPI over the last 10 years. Extensions may be published as separate >drafts or included in a GSSAPI version 3. While version 2 of the GSSAPI >may be clarified, no backward incompatible changes will be made to this >version of the API. > >This working group is chartered to revise the GSSAPI v2 RFCs for the >purpose of clarifying areas of ambiguity: > o Use of channel bindings > o Thread safety restrictions > o C language utilization clarifications and recommendations > (e.g., type utilization, name spaces) > o Guidelines for GSS-API mechanism designers > o Guidelines for GSS-API application protocol designers > >This working group is chartered to specify a non-backward compatible >GSSAPI v3 including support for the following extensions: > o Clarify the portable use of channel bindings and better specify > channel bindings in a language-independent manner. > o Specify thread safety extensions to allow multi-threaded applications > to use GSSAPI > o Definitions of channel bindings for TLS, IPSec, SSH and other > cryptographic channels based on work started in the NFSV4 working > group. > o Define a GSSAPI extension to allow applications to store credentials. > Discussions to be started based upon: > o draft-williams-gss-store-deleg-creds-xx.txt > o Extensions to solve problems posed by the Global Grid Forum's GSSAPI > extensions document. > o Extensions to deal with mechanism-specific extensibility in a > multi-mechanism environment. > o Extend the GSS-API to support authorization by portable GSS > applications while also supporting mechanisms that do not have a > single canonical name for each authentication identity. > o Specify a Domain-based GSS service principal name consisting of: > service name, host name, and domain name for use by application > services hosted across multiple servers. > o Extensions to support stackable GSSAPI mechanisms. > o Define a Psuedo-Random Function for GSSAPI > >This working group is chartered to perform the following GSSAPI mechanism >specification work: > > o Specify a GSSAPI v2/v3 Channel Conjunction Mechanism > o Revise RFC 2748 (SPNEGO) to correct problems that make the > specification unimplementable and to document the problems > found in widely-deployed attempts to implement this spec. > o Update the GSSAPI Java Language Bindings to match actual implementation > >This working group is chartered to perform the following new GSSAPI Language >Binding specification work: > > o Specify a language binding for C# > >End of Proposed Charter > > >The participants of the IETF-CAT mailing list realize the quantity of >work which we desire to undertake is quite ambitious in scope. This is >simply an indication of how much work has accumulated over the last few >years since the CAT working group disbanded. We believe that we can >accomplish the stated work items in 18 months. > >Milestones >Either: > o Clarifications to GSSAPIv2 (six months to IESG) > Informational > [editor: TBD] >Or: > o Generic Security Service Application Program Interface Version 2, Update 2 > (six months to IESG) > Proposed Standard > [editor: TBD] > o Generic Security Service API Version 2, Update 1 : C-bindings (six months to IESG) > Proposed Standard > [editor: TBD] >End: > o The Channel Conjunction Mechanism (CCM) for the GSSAPI (six months > to IESG) > Proposed Standard > [editors: Mike Eisler/Nicolas Williams] > draft-ietf-nfsv4-ccm-03.txt > (Currently in NFSv4 Working Group - should it be moved?) > o On the Use of Channel Bindings to Secure Channels (six months to IESG) > Proposed Standard > [editor: Nicolas Williams] > draft-ietf-nfsv4-channel-bindings-02.txt > (Currently in NFSv4 Working Group - should it be moved?) > o GSSAPIv3 (18 months to IESG) > Proposed Standard > [editor: to be determined] > o Stackable Generic Security Service Pseudo-mechanisms > Proposed Standard or to be folded into GSSAPIv3 > [editor: Nicolas Williams] > draft-williams-gssapi-stackable-pseudo-mechs-00.txt > o GSS-APIv2 Extension for Storing Delegated Credentials > Proposed Standard or to be folded into GSSAPIv3 > [editor: Nicolas Williams] > draft-williams-gssapi-store-deleg-creds-00.txt > o GSSAPI Mechanisms without a Unique Canonical Name (12 months to IESG) > to be folded into GSSAPIv3 > [editor: Sam Hartman] > draft-hartman-gss-naming-00.txt > o SPNEGO (RFC 2478) Revisions (18 months to IESG) > Proposed Standard > [editor: TBD] > o Pseudo-Random Function for GSSAPI > to be folded into GSSAPIv3 > [editor: Nicolas Williams] > o C# Bindings for GSSAPI > Proposed Standard > [editor: Larry Zhu] > >End of Milestones > > >MAILING LIST: >The mailing list for discussions is > > kitten@lists.ietf.org > >Use the following web page to join: > > https://www1.ietf.org/mailman/listinfo/kitten > > > >------------------------------------------------------------------------ > >_______________________________________________ >Kitten mailing list >Kitten@lists.ietf.org >https://www1.ietf.org/mailman/listinfo/kitten > > _______________________________________________ Kitten mailing list Kitten@lists.ietf.org https://www1.ietf.org/mailman/listinfo/kitten
- Proposed Charter (Draft #3) Jeffrey Altman
- Re: Proposed Charter (Draft #3) Wyllys Ingersoll
- Re: Proposed Charter (Draft #3) Jeffrey Altman