[OAUTH-WG] HTTP auth issues, in Anaheim
Yutaka OIWA <y.oiwa@aist.go.jp> Fri, 19 March 2010 12:03 UTC
Return-Path: <y.oiwa@aist.go.jp>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 11A2C3A68D8 for <oauth@core3.amsl.com>; Fri, 19 Mar 2010 05:03:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 3.64
X-Spam-Level: ***
X-Spam-Status: No, score=3.64 tagged_above=-999 required=5 tests=[BAYES_50=0.001, DNS_FROM_OPENWHOIS=1.13, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dmn-0sw0O8Mt for <oauth@core3.amsl.com>; Fri, 19 Mar 2010 05:03:30 -0700 (PDT)
Received: from mx1.aist.go.jp (mx1.aist.go.jp [150.29.246.133]) by core3.amsl.com (Postfix) with ESMTP id AD9363A68D9 for <oauth@ietf.org>; Fri, 19 Mar 2010 05:03:29 -0700 (PDT)
Received: from rqsmtp1.aist.go.jp (rqsmtp1.aist.go.jp [150.29.254.115]) by mx1.aist.go.jp with ESMTP id o2JC3fda023347; Fri, 19 Mar 2010 21:03:41 +0900 (JST) env-from (y.oiwa@aist.go.jp)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=aist.go.jp; s=aist; t=1269000221; bh=yCgCUS3GNoipLlQr2BbxAmOhmZHNZLmm0JYVQyzQyoU=; h=From:Date:Message-ID; b=jRgWkRcPOWCpnwvBY1fmKg9K3SZiYahk8fKnMdYpcIFmgArQeZX61qZX03uTN97hl /DKXsfcgJH1tBL9jcT/vzUPmwuo1P7k7dJKRin64+E1Q4MkAwKuzLCayh8ppI7+PO/ GwmfAqxa0MrBbD3lfMZV+zFF284CA6jI6LhY2gSs=
Received: from smtp1.aist.go.jp by rqsmtp1.aist.go.jp with ESMTP id o2JC3fmE004783; Fri, 19 Mar 2010 21:03:41 +0900 (JST) env-from (y.oiwa@aist.go.jp)
Received: by smtp1.aist.go.jp with ESMTP id o2JC3cWO021305; Fri, 19 Mar 2010 21:03:38 +0900 (JST) env-from (y.oiwa@aist.go.jp)
To: OAuth WG <oauth@ietf.org>, Public-Web-Security Mailing List <public-web-security@w3.org>
From: Yutaka OIWA <y.oiwa@aist.go.jp>
Date: Fri, 19 Mar 2010 21:03:38 +0900
Message-ID: <87d3z0o6w5.fsf@bluewind.rcis.aist.go.jp>
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Subject: [OAUTH-WG] HTTP auth issues, in Anaheim
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Yutaka OIWA <y.oiwa@aist.go.jp>
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Mar 2010 12:03:32 -0000
Dear people in OAuth and other HTTP related mailing lists, Last month I updated the draft for HTTP Mutual Access Authorization Protocol proposal (draft-oiwa-http-mutualauth-06). A full announcement has been already sent to OAuth WG mailing list. If you are interested, please see an article in OAuth ML (http://www.ietf.org/mail-archive/web/oauth/current/msg01223.html). To step forward for next -07 draft, I have a plan to make a separate draft which covers several extensions to HTTP authentication mechanisms (not specific to our Mutual proposal), which may include features such as log-out, redirection depending on authentication status etc. The next Mutual-auth draft will then refer to that new draft for required extensions, and will become modular and much simpler. To realize that, I want to have suggestions from/discussion with other people who are also working on or interested in this area. I will visit Anaheim and attend OAuth, httpbis and several other HTTP-related WGs. If you are interested in improving various HTTP authentication issues (such as secure authentication, logout and others), please find us in Anaheim, or contact me on email. I'm looking very forward to discussing issues there. Cheers, -- Yutaka OIWA, Ph.D. Research Scientist Research Center for Information Security (RCIS) National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: <y.oiwa@aist.go.jp>, <yutaka@oiwa.jp> OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5]
- [OAUTH-WG] HTTP auth issues, in Anaheim Yutaka OIWA