[ldapext] OATH-LDAP as ldapext WG item?

Michael Ströder <michael@stroeder.com> Tue, 24 November 2015 14:49 UTC

Return-Path: <michael@stroeder.com>
X-Original-To: ldapext@ietfa.amsl.com
Delivered-To: ldapext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 1E1B31A86F1 for <ldapext@ietfa.amsl.com>; Tue, 24 Nov 2015 06:49:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.988
X-Spam-Status: No, score=-0.988 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.585, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id YFQAFS47AYkr for <ldapext@ietfa.amsl.com>; Tue, 24 Nov 2015 06:49:37 -0800 (PST)
Received: from srv1.stroeder.com (srv1.stroeder.com []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B07871A86E3 for <ldapext@ietf.org>; Tue, 24 Nov 2015 06:49:36 -0800 (PST)
Received: from srv4.stroeder.local (unknown []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.stroeder.local", Issuer "stroeder.com Server CA no. 2009-07" (verified OK)) by srv1.stroeder.com (Postfix) with ESMTPS id 9A51C1CF58 for <ldapext@ietf.org>; Tue, 24 Nov 2015 14:49:33 +0000 (UTC)
Received: from nb2.stroeder.local (nb2.stroeder.local []) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by srv4.stroeder.local (Postfix) with ESMTPS id 5B3A71CF97 for <ldapext@ietf.org>; Tue, 24 Nov 2015 14:49:31 +0000 (UTC)
To: ldapext@ietf.org
From: =?UTF-8?Q?Michael_Str=c3=b6der?= <michael@stroeder.com>
X-Enigmail-Draft-Status: N1110
Message-ID: <565478FA.6050502@stroeder.com>
Date: Tue, 24 Nov 2015 15:49:30 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:42.0) Gecko/20100101 SeaMonkey/2.39
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms040805000309040308090608"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ldapext/6jvnpESh0zbT7AFURCKWYsySKPc>
Subject: [ldapext] OATH-LDAP as ldapext WG item?
X-BeenThere: ldapext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: LDAP Extension Working Group <ldapext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ldapext>, <mailto:ldapext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ldapext/>
List-Post: <mailto:ldapext@ietf.org>
List-Help: <mailto:ldapext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ldapext>, <mailto:ldapext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Nov 2015 14:49:40 -0000


Anyone here interested in co-authoring an I-D describing OATH-LDAP (presented
at LDAPcon 2015)?

Is there general interest to add this as ldapext WG item?

I have a schema for HOTP/TOTP (see attachment) and a reference implementation
for HOTP and some thoughts on operational considerations. TOTP schema might
need some small work and I have to adapt the implementation.

Ciao, Michael.