Re: [kitten] taking on new work?

Jeffrey Altman <jaltman@secure-endpoints.com> Wed, 05 April 2017 15:22 UTC

Return-Path: <prvs=1268e6793a=jaltman@secure-endpoints.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A8F412945C for <kitten@ietfa.amsl.com>; Wed, 5 Apr 2017 08:22:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=secure-endpoints.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yra2N_KNDN7L for <kitten@ietfa.amsl.com>; Wed, 5 Apr 2017 08:22:06 -0700 (PDT)
Received: from sequoia-grove.secure-endpoints.com (sequoia-grove.ad.secure-endpoints.com [208.125.0.235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 52B33129481 for <kitten@ietf.org>; Wed, 5 Apr 2017 08:22:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/relaxed; d=secure-endpoints.com; s=MDaemon; t=1491405701; x=1492010501; i=jaltman@secure-endpoints.com; q=dns/txt; h=VBR-Info:Subject:To: References:Cc:From:Openpgp:Organization:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=+VvIOjNVGpf ifbwUdzK1VKkyqKLdE7vNZZvbodYx8AE=; b=XpJ5wYVyd8XCA4sIgrCQ+MjN0zM av5RXL0L8x2iQRsvHjJdCHx5p3KrSm0E57PDkIEdgmFH9HXaB2Y1A4envuwwoC6Y XrsNiVm/6iZuKSSMtVR06JbZ9uYHD8pC3JXREA1ISdBIydLd/llT0AbqZJN3yBmi 7s10USA8ApqXWWDY=
X-MDAV-Result: clean
X-MDAV-Processed: sequoia-grove.secure-endpoints.com, Wed, 05 Apr 2017 11:21:40 -0400
X-Spam-Processed: sequoia-grove.secure-endpoints.com, Wed, 05 Apr 2017 11:21:37 -0400
Received: from [IPv6:2001:470:1f07:f77:d804:1659:6eb:7670] by secure-endpoints.com (IPv6:2001:470:1f07:f77:28d9:68fb:855d:c2a5) (MDaemon PRO v17.0.0) with ESMTPSA id md50001309305.msg; Wed, 05 Apr 2017 11:21:36 -0400
VBR-Info: md=secure-endpoints.com; mc=all; mv=vbr.emailcertification.org;
X-MDRemoteIP: 2001:470:1f07:f77:d804:1659:6eb:7670
X-MDHelo: [IPv6:2001:470:1f07:f77:d804:1659:6eb:7670]
X-MDArrival-Date: Wed, 05 Apr 2017 11:21:36 -0400
X-Authenticated-Sender: jaltman@secure-endpoints.com
X-Return-Path: prvs=1268e6793a=jaltman@secure-endpoints.com
X-Envelope-From: jaltman@secure-endpoints.com
X-MDaemon-Deliver-To: kitten@ietf.org
X-CAV-Result: clean
To: Benjamin Kaduk <kaduk@mit.edu>
References: <20170405045550.GJ30306@kduck.kaduk.org> <fa13dc36-a2b7-190e-a64d-109161123fac@secure-endpoints.com> <20170405151336.GK30306@kduck.kaduk.org>
Cc: kitten@ietf.org
From: Jeffrey Altman <jaltman@secure-endpoints.com>
Openpgp: id=FA444AF197F449B24CF3E699F77A735592B69A04; url=https://pgp.mit.edu
Organization: Secure Endpoints Inc.
Message-ID: <c69af66b-b105-b8ce-27da-14cfd176ff14@secure-endpoints.com>
Date: Wed, 05 Apr 2017 11:21:32 -0400
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <20170405151336.GK30306@kduck.kaduk.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms040503050900020809060400"
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/pQ43CKId2oi8LwPvGtC28Gh3XBc>
Subject: Re: [kitten] taking on new work?
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Apr 2017 15:22:08 -0000

On 4/5/2017 11:13 AM, Benjamin Kaduk wrote:
> On Wed, Apr 05, 2017 at 08:40:27AM -0400, Jeffrey Altman wrote:
>> On 4/5/2017 12:55 AM, Benjamin Kaduk wrote:
>>>
>>> To give some historical perspective on the sense of the working
>>> group, back in Buenos Aires the chairs had a (very broad!) list of:
>>> draft-williams-kitten-krb5-pkcross
>>> draft-williams-kitten-krb5-extra-rt
>>> draft-williams-kitten-generic-naming-attributes
>>> draft-williams-kitten-impersonation-naming-attr
>>> draft-vanrein-kitten-rfbsasl
>>> draft-vanrein-dnstxt-krb1
>>> draft-vanrein-krb5-kdh
>>> draft-vanrein-kitten-krb5-pseudonymity
>>> draft-mccallum-kitten-krb-spake-preauth
>>> draft-kaduk-kitten-des-des-des-die-die-die
>>> draft-howard-gssapi-aead
>>> draft-mccallum-kitten-krb-service-discovery
>>
>> Not on this list (possibly because the draft was expired at the time of
>> the Buenos Aires meeting) is
>>
>>   https://datatracker.ietf.org/doc/draft-cantor-ietf-kitten-saml-ec/
> 
> 
> That was adopted years ago and became
> https://datatracker.ietf.org/doc/draft-ietf-kitten-sasl-saml-ec/ ,
> though apparently no one set the right metadata to show it as
> replacing the draft-cantor version.

The document

  https://datatracker.ietf.org/doc/draft-ietf-kitten-sasl-saml-ec/ ,

is not listed at

  https://datatracker.ietf.org/wg/kitten/documents/

possibly because it is expired and archived.

> If you think it is ready to publish, please send a review of the
> latest version to the list (or a link to one you already sent), and
> we can make a github repo to track reviews of that document and try
> to move it forward.  I did not un-expire it with my batch from last
> week because I was unsure if there was any WG interest in moving it
> forward, though it seems I now have the answer to that question.
> 
>> which has an open source implementation for Shibboleth at
>>
>>   https://github.com/fedushare/mech_saml_ec
>>
>>> and the sense of the room was that
>>> draft-mccallum-kitten-krb-spake-preauth and
>>> draft-williams-kitten-krb5-pkcross were the most promising.
>>>
>>> (draft-mccallum-kitten-krb-service-discovery has since been adopted)
>>>
>>> Recall that our current work items are listed at:
>>> https://datatracker.ietf.org/wg/kitten/documents/ , some of which
>>> are believed to be ready to send to the IESG or nearly so.
>>>
>>> What do people currently feel are the top one or two highest
>>> priority items for the WG to consider?  (Such items need not be
>>> limited to the above list, of course; note that, e.g.,
>>> draft-schmaus-kitten-sasl-ht-00 has recently appeared on the list of
>>> related internet-drafts.)
>>>
>>> I'll also note that we should be able to ask the curdle WG to take
>>> on draft-kaduk-kitten-des-des-des-die-die-die, which is simple
>>> deprecation of RC4 and 3DES (and some registry cleanup from RFC
>>> 6649).  I'll plan to do that unless people want to do it in kitten
>>> instead.  One might also ask about moving
>>> draft-ietf-kitten-pkinit-alg-agility to curdle (since it moves
>>> PKINIT off SHA1), but that's a little more complicated since it
>>> first has to add the agility to do so, and judging by the reviews
>>> accumulated and noted at
>>> https://github.com/kittenwg/draft-ietf-kitten-pkinit-alg-agility ,
>>> it should be basically done already.
>>
>> I believe that draft-kaduk-kitten-des-des-des-die-die-die fine as-is and
>> should simply be published by Kitten.
> 
> Have you reviewed a specific revision of it so as to form that
> opinion?  Again, if we don't have a number of reviews that we can
> track, the document is just going to sit there and not move forward.

This is only one revision of


https://datatracker.ietf.org/doc/html/draft-kaduk-kitten-des-des-des-die-die-die

I have reviewed it.  Given that it is a document describing deprecation
of encryption types I don't think it requires perfection.

>> I would like to see the following documents be adopted
>>
>>   draft-williams-kitten-krb5-pkcross
>>   draft-howard-gssapi-aead
>>   draft-cantor-ietf-kitten-saml-ec
> 
> Hmm, that is only "one or two" on a technicality (the
> draft-cantor-ietf-kitten-saml-ec is already a WG item).
> 
> -Ben
>