[OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt
Thomas Hardjono <hardjono@MIT.EDU> Wed, 09 June 2010 19:17 UTC
Return-Path: <hardjono@mit.edu>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D72673A67EF for <oauth@core3.amsl.com>; Wed, 9 Jun 2010 12:17:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.809
X-Spam-Level:
X-Spam-Status: No, score=-1.809 tagged_above=-999 required=5 tests=[AWL=0.790, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O1skzsqR0cvu for <oauth@core3.amsl.com>; Wed, 9 Jun 2010 12:17:55 -0700 (PDT)
Received: from dmz-mailsec-scanner-7.mit.edu (DMZ-MAILSEC-SCANNER-7.MIT.EDU [18.7.68.36]) by core3.amsl.com (Postfix) with ESMTP id 8EB623A676A for <oauth@ietf.org>; Wed, 9 Jun 2010 12:17:55 -0700 (PDT)
X-AuditID: 12074424-b7b9dae000002832-4a-4c0fe8e4de6a
Received: from mailhub-auth-1.mit.edu (MAILHUB-AUTH-1.MIT.EDU [18.9.21.35]) by dmz-mailsec-scanner-7.mit.edu (Symantec Brightmail Gateway) with SMTP id E8.59.10290.4E8EF0C4; Wed, 9 Jun 2010 15:17:56 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-EXCHANGE-1.MIT.EDU [18.9.28.15]) by mailhub-auth-1.mit.edu (8.13.8/8.9.2) with ESMTP id o59JHuZo009412 for <oauth@ietf.org>; Wed, 9 Jun 2010 15:17:56 -0400
Received: from oc11exedge2.exchange.mit.edu (OC11EXEDGE2.EXCHANGE.MIT.EDU [18.9.3.18]) ) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id o59JHoig007899 for <oauth@ietf.org>; Wed, 9 Jun 2010 15:17:56 -0400
Received: from oc11exhub4.exchange.mit.edu (18.9.3.14) by oc11exedge2.exchange.mit.edu (18.9.3.18) with Microsoft SMTP Server (TLS) id 8.1.393.1; Wed, 9 Jun 2010 15:17:41 -0400
Received: from EXPO10.exchange.mit.edu ([18.9.4.15]) by oc11exhub4.exchange.mit.edu ([18.9.3.14]) with mapi; Wed, 9 Jun 2010 15:17:41 -0400
From: Thomas Hardjono <hardjono@MIT.EDU>
To: OAuth WG <oauth@ietf.org>
Date: Wed, 09 Jun 2010 15:17:38 -0400
Thread-Topic: draft-hardjono-oauth-kerberos-00.txt
Thread-Index: AcsIBpL7X4EGb1s5RwersbAKjLl6pQAAOmrw
Message-ID: <DADD7EAD88AB484D8CCC328D40214CCD0179259124@EXPO10.exchange.mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_000A_01CB07E6.E572A740"
MIME-Version: 1.0
X-Brightmail-Tracker: AAAAAA==
Subject: [OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jun 2010 19:17:56 -0000
I was prompted to write this draft after the OATH WG meeting at the last IETF in March, in which several folks in the room were comparing OAuth with Kerberos. Some people also suggested to me that a comparative doc might be useful. http://www.ietf.org/internet-drafts/draft-hardjono-oauth-kerberos-00.txt The hope is that if OAuth 2.0 wanted to use the Needham-Schroeder (Kerberos) authentication paradigm, that OAuth could learn from the two decades of Kerberos development. /thomas/ __________________________________________ --- On Wed, 6/9/10, Internet-Drafts@ietf.org <Internet-Drafts@ietf.org> wrote: > From: Internet-Drafts@ietf.org <Internet-Drafts@ietf.org> > Subject: I-D Action:draft-hardjono-oauth-kerberos-00.txt > To: i-d-announce@ietf.org > Date: Wednesday, June 9, 2010, 12:00 PM > A New Internet-Draft is available > from the on-line Internet-Drafts directories. > > Title > : OAuth 2.0 support for the Kerberos V5 > Authentication Protocol > Author(s) > : T. Hardjono > Filename: draft-hardjono-oauth-kerberos-00.txt > Pages > : 21 > Date > : 2010-06-09 > > This draft proposes an OAuth2.0 profile for Kerberos > v5. We compare > the Kerberos protocol flow with the OAuth protocol flow and > as far as > possible map the relevant parameters in Kerberos to OAuth > parameters. > We propose the use of the OAuth 2.0 message flows and its > tokens to > carry Kerberos TGTs and Service Tickets in an opaque > manner. > > A URL for this Internet-Draft is: > http://www.ietf.org/internet-drafts/draft-hardjono-oauth-kerberos-00.txt > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > Below is the data which will enable a MIME compliant mail > reader > implementation to automatically retrieve the ASCII version > of the > Internet-Draft. > > -----Inline Attachment Follows----- > > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft directories: http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt >
- [OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt Thomas Hardjono
- Re: [OAUTH-WG] draft-hardjono-oauth-kerberos-00.t… Peter Saint-Andre