Re: [OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt
Peter Saint-Andre <stpeter@stpeter.im> Wed, 21 July 2010 16:51 UTC
Return-Path: <stpeter@stpeter.im>
X-Original-To: oauth@core3.amsl.com
Delivered-To: oauth@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8FF583A68C8 for <oauth@core3.amsl.com>; Wed, 21 Jul 2010 09:51:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.654
X-Spam-Level:
X-Spam-Status: No, score=-2.654 tagged_above=-999 required=5 tests=[AWL=-0.055, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RzIxmADvY3zZ for <oauth@core3.amsl.com>; Wed, 21 Jul 2010 09:51:16 -0700 (PDT)
Received: from stpeter.im (stpeter.im [207.210.219.233]) by core3.amsl.com (Postfix) with ESMTP id 9A88F3A6896 for <oauth@ietf.org>; Wed, 21 Jul 2010 09:51:16 -0700 (PDT)
Received: from dhcp-64-101-72-121.cisco.com (dhcp-64-101-72-121.cisco.com [64.101.72.121]) (Authenticated sender: stpeter) by stpeter.im (Postfix) with ESMTPSA id C6A4E400EE for <oauth@ietf.org>; Wed, 21 Jul 2010 10:51:32 -0600 (MDT)
Message-ID: <4C472593.4060901@stpeter.im>
Date: Wed, 21 Jul 2010 10:51:31 -0600
From: Peter Saint-Andre <stpeter@stpeter.im>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1.11) Gecko/20100711 Thunderbird/3.0.6
MIME-Version: 1.0
To: oauth@ietf.org
References: <DADD7EAD88AB484D8CCC328D40214CCD0179259124@EXPO10.exchange.mit.edu>
In-Reply-To: <DADD7EAD88AB484D8CCC328D40214CCD0179259124@EXPO10.exchange.mit.edu>
X-Enigmail-Version: 1.0.1
OpenPGP: url=http://www.saint-andre.com/me/stpeter.asc
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Subject: Re: [OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Jul 2010 16:51:17 -0000
Thomas, thanks for writing this draft. I finally got a chance to read it this morning and it is quite helpful and relevant. Do you plan to update it at some point in the light of more recent versions of the core draft? On 6/9/10 1:17 PM, Thomas Hardjono wrote: > > I was prompted to write this draft after the OATH WG meeting at the last > IETF in March, in which several folks in the room were comparing OAuth with > Kerberos. Some people also suggested to me that a comparative doc might be > useful. > > http://www.ietf.org/internet-drafts/draft-hardjono-oauth-kerberos-00.txt > > The hope is that if OAuth 2.0 wanted to use the Needham-Schroeder (Kerberos) > authentication paradigm, that OAuth could learn from the two decades of > Kerberos development. > > /thomas/ > > > __________________________________________ > > > --- On Wed, 6/9/10, Internet-Drafts@ietf.org <Internet-Drafts@ietf.org> > wrote: > >> From: Internet-Drafts@ietf.org <Internet-Drafts@ietf.org> >> Subject: I-D Action:draft-hardjono-oauth-kerberos-00.txt >> To: i-d-announce@ietf.org >> Date: Wednesday, June 9, 2010, 12:00 PM >> A New Internet-Draft is available >> from the on-line Internet-Drafts directories. >> >> Title >> : OAuth 2.0 support for the Kerberos V5 >> Authentication Protocol >> Author(s) >> : T. Hardjono >> Filename: draft-hardjono-oauth-kerberos-00.txt >> Pages >> : 21 >> Date >> : 2010-06-09 >> >> This draft proposes an OAuth2.0 profile for Kerberos >> v5. We compare >> the Kerberos protocol flow with the OAuth protocol flow and >> as far as >> possible map the relevant parameters in Kerberos to OAuth >> parameters. >> We propose the use of the OAuth 2.0 message flows and its >> tokens to >> carry Kerberos TGTs and Service Tickets in an opaque >> manner. >> >> A URL for this Internet-Draft is: >> http://www.ietf.org/internet-drafts/draft-hardjono-oauth-kerberos-00.txt >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> Below is the data which will enable a MIME compliant mail >> reader >> implementation to automatically retrieve the ASCII version >> of the >> Internet-Draft. >> >> -----Inline Attachment Follows----- >>
- [OAUTH-WG] draft-hardjono-oauth-kerberos-00.txt Thomas Hardjono
- Re: [OAUTH-WG] draft-hardjono-oauth-kerberos-00.t… Peter Saint-Andre