Re: [OAUTH-WG] OAuth session at IETF-79

Hannes Tschofenig <hannes.tschofenig@gmx.net> Sun, 24 October 2010 16:09 UTC

Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2D2903A68D1 for <oauth@core3.amsl.com>; Sun, 24 Oct 2010 09:09:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.507
X-Spam-Level:
X-Spam-Status: No, score=-101.507 tagged_above=-999 required=5 tests=[AWL=-0.463, BAYES_00=-2.599, FRT_LITTLE=1.555, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uH3YbWNTZ3yS for <oauth@core3.amsl.com>; Sun, 24 Oct 2010 09:09:37 -0700 (PDT)
Received: from mail.gmx.net (mailout-de.gmx.net [213.165.64.22]) by core3.amsl.com (Postfix) with SMTP id 49B653A688D for <oauth@ietf.org>; Sun, 24 Oct 2010 09:09:36 -0700 (PDT)
Received: (qmail invoked by alias); 24 Oct 2010 16:11:18 -0000
Received: from a88-115-222-204.elisa-laajakaista.fi (EHLO [192.168.1.7]) [88.115.222.204] by mail.gmx.net (mp040) with SMTP; 24 Oct 2010 18:11:18 +0200
X-Authenticated: #29516787
X-Provags-ID: V01U2FsdGVkX194599ZPSd4YwbpzQdprFPkUaFNL9S7DF2N+b5/xE gStUhQeNw7eFna
Mime-Version: 1.0 (Apple Message framework v1081)
Content-Type: text/plain; charset=windows-1252
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
In-Reply-To: <AANLkTincXp+JsFrQJm91krKw10rei418Uo-YpLEf26Zb@mail.gmail.com>
Date: Sun, 24 Oct 2010 19:11:17 +0300
Content-Transfer-Encoding: quoted-printable
Message-Id: <54F180F5-E3FB-44DF-894B-7412BD94F02B@gmx.net>
References: <245536261-1287141188-cardhu_decombobulator_blackberry.rim.net-1893194191-@bda303.bisx.produk.on.blackberry> <3D3C75174CB95F42AD6BCC56E5555B45033374BA@FIESEXC015.nsn-intra.net> <AANLkTincXp+JsFrQJm91krKw10rei418Uo-YpLEf26Zb@mail.gmail.com>
To: David Recordon <recordond@gmail.com>
X-Mailer: Apple Mail (2.1081)
X-Y-GMX-Trusted: 0
Cc: "Tschofenig, Hannes \(NSN - FI/Espoo\)" <hannes.tschofenig@nsn.com>, oauth@ietf.org
Subject: Re: [OAUTH-WG] OAuth session at IETF-79
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 Oct 2010 16:09:39 -0000

Hi David, 

I believe that there is lot of other work in the IETF with relevance to OAuth. For example, at this IETF meeting the topics of interest are: 

* Web related working groups in the APPS area.
* Security area, including the recently created ABFAB working group (see http://datatracker.ietf.org/wg/abfab/).
* O&M area particularly regarding AAA in context to ABFAB.  
* I also believe it is useful to talk to the RAI area people since you will find the cellular operator community there. There is a lot of excitement for putting applications on mobile phones. Getting a better idea how those people think may be helpful. 

This list can easily grow if you are interested in work beyond OAuth (for example on work related to the recent real-time communication in the browser workshop).

It may be worth mentioning that there is always the chance to talk to lots of people who have a long history in the development of communication protocols.  

Ciao
Hannes

PS: You mentioned the Kerberos people showing up at an earlier meeting. I still think it is very useful to take a look at the design of Kerberos given the strong relationship between Kerberos and OAuth. I little while ago I made an interview with two MIT folks about the Kerberos design: http://www.tschofenig.priv.at/kerberos/Kerberos.mp3


On Oct 15, 2010, at 8:52 PM, David Recordon wrote:

> Hey Hannes, I'd like to at least explain my reasoning behind not planning to go to the China meeting because it really isn't restrictions around travel. This is likely inpolitic to say, but it's because of how much of a waste of my time the LA meeting was. The LA meeting contained numerous people who weren't – and still aren't – engaged in this working group who felt that they should argue with us repeatedly around how what we were doing was wrong and already solved by Kerberos. That trip was only two days, but China will easily be a week. So for me it is about what is the best use of my time, not just how much it costs.
> 
> I'd love to have another face to face meeting between people working actively on deploying OAuth 2.0. I hope that IIW in a few weeks will provide a venue for some of that. But if it's in Europe then I'll go to Europe. For me it is about who is (and isn't) going to be there rather than where the meeting is physically located.
> 
> --David
> 
> 
> On Fri, Oct 15, 2010 at 5:11 AM, Tschofenig, Hannes (NSN - FI/Espoo) <hannes.tschofenig@nsn.com> wrote:
> Hi Torsten,
> 
> We have to figure out what the most efficient way is to get our work
> done.
> 
> With the Prague IETF we will see again whether there is a need for
> face-to-face meeting. We had phone conference calls earlier this year as
> well. That's another option to make progress in addition to the usage of
> the mailing list.
> 
> Attending the IETF meetings is useful to get a better understanding of
> the big picture and that's why I go there.  However, I understand that
> others have travel restrictions. Meetings outside the US, like this one,
> are obviously more expensive for those who are based in the US.
> 
> Ciao
> Hannes
> 
> > -----Original Message-----
> > From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org]
> > On Behalf Of ext torsten@lodderstedt.net
> > Sent: Friday, October 15, 2010 2:13 PM
> > To: Eliot Lear; igor.faynberg@alcatel-lucent.com
> > Cc: oauth@ietf.org
> > Subject: Re: [OAUTH-WG] OAuth session at IETF-79
> >
> > What is the alternative from your point of view?
> >
> > Regards,
> > Torsten.
> > ------Originalnachricht------
> > Von: Eliot Lear
> > An:igor.faynberg@alcatel-lucent.com
> > Cc:Lodderstedt, Torsten
> > Cc:oauth@ietf.org
> > Betreff: Re: [OAUTH-WG] OAuth session at IETF-79
> > Gesendet: 15. Okt. 2010 13:10
> >
> >  I agree with Hannes' approach.  What happened in Maastricht
> > was that we
> > ended up with  bifurcated discussions- in the room and on the list.
> > That didn't seem very productive.
> >
> >
> > Gesendet mit BlackBerry(r) Webmail von Telekom Deutschland
> > _______________________________________________
> > OAuth mailing list
> > OAuth@ietf.org
> > https://www.ietf.org/mailman/listinfo/oauth
> >
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth