IETF Logo Mail Archive

Re: Cross-organizational ACs

Steve Hanna <steve.hanna@sun.com> Wed, 22 November 2000 16:18 UTC

Received: from ns.secondary.com (ns.secondary.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with SMTP id LAA19228 for <pkix-archive@odin.ietf.org>; Wed, 22 Nov 2000 11:18:29 -0500 (EST)
Received: from localhost (daemon@localhost) by ns.secondary.com (8.9.3/8.9.3) with SMTP id IAA15604; Wed, 22 Nov 2000 08:17:00 -0800 (PST)
Received: by mail.imc.org (bulk_mailer v1.12); Wed, 22 Nov 2000 08:16:57 -0800
Received: from mercury.Sun.COM (mercury.Sun.COM [192.9.25.1]) by ns.secondary.com (8.9.3/8.9.3) with ESMTP id IAA15565 for <ietf-pkix@imc.org>; Wed, 22 Nov 2000 08:16:57 -0800 (PST)
Received: from eastmail2.East.Sun.COM ([129.148.1.241]) by mercury.Sun.COM (8.9.3+Sun/8.9.3) with ESMTP id IAA22207; Wed, 22 Nov 2000 08:17:38 -0800 (PST)
Received: from sunlabs.East.Sun.COM (sunlabs.East.Sun.COM [129.148.75.250]) by eastmail2.East.Sun.COM (8.9.3+Sun/8.9.3/ENSMAIL,v1.7) with ESMTP id LAA03962; Wed, 22 Nov 2000 11:17:37 -0500 (EST)
Received: from sun.com (dhcp75-155 [129.148.75.155]) by sunlabs.East.Sun.COM (8.9.3+Sun/8.9.1) with ESMTP id LAA26033; Wed, 22 Nov 2000 11:17:36 -0500 (EST)
Message-ID: <3A1BF117.F2AC440C@sun.com>
Date: Wed, 22 Nov 2000 11:15:19 -0500
From: Steve Hanna <steve.hanna@sun.com>
Organization: Sun Microsystems, Inc.
X-Mailer: Mozilla 4.75 [en] (WinNT; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Denis Pinkas <Denis.Pinkas@bull.net>
CC: stephen.farrell@baltimore.ie, ietf-pkix@imc.org
Subject: Re: Cross-organizational ACs
References: <sa10f961.033@prv-mail20.provo.novell.com> <3A11BAAC.4140F4EF@sun.com> <3A126549.D617698A@baltimore.ie> <3A12AA3C.6F771B38@sun.com> <3A12AF55.279C2779@baltimore.ie> <3A12B13D.2BFBAD78@sun.com> <3A13AD8F.544971B8@bull.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Precedence: bulk
List-Archive: http://www.imc.org/ietf-pkix/mail-archive/
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: mailto:ietf-pkix-request@imc.org?body=unsubscribe
Content-Transfer-Encoding: 7bit

Denis Pinkas wrote:
> Besides Stephen (and possibly the co-editors), it would be nice to
> know who is (or is not) in favour of AAControls.

This document has already passed WG Last Call and IETF Last Call.
Apparently, the consensus of the working group was to include the
AAControls extension. Although you and I don't agree with this, it's
probably too late to do anything about it unless there is a *major*
problem with the extension.

AAControls is an optional extension. It can be ignored. I suggest that
we allow it to be included for now and focus our energies on providing a
better delegation system (probably a profile of X.509 delegation,
focussed on the needs of Internet protocols). If we can accomplish that,
we can propose that AAControls be deprecated when ac509prof is ready to
move to Draft Standard status. After all, one purpose of Proposed
Standard documents (as described in RFC 2026) is to "gain experience and
to validate, test, and clarify the specification."

> If you plan to attend the next IETF meeting, I would like to have a
> chat with you, so that we can possibly define such delegation
> schemes. No syntax changes planed in the definition of ACs, simply
> the definition of rules on how to use them in the context of
> delegation.

I would love to do this. Anyone else who would like to participate,
please send me email and I will arrange an informal meeting.

-Steve

v2.23.0 | Report a Bug | By Email