[regext] FW: I-D Action: draft-ietf-regext-login-security-07.txt
"Gould, James" <jgould@verisign.com> Fri, 06 December 2019 15:20 UTC
Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C45F1200B1 for <regext@ietfa.amsl.com>; Fri, 6 Dec 2019 07:20:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hZ1XKZds6D91 for <regext@ietfa.amsl.com>; Fri, 6 Dec 2019 07:20:39 -0800 (PST)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7F933120020 for <regext@ietf.org>; Fri, 6 Dec 2019 07:20:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=3560; q=dns/txt; s=VRSN; t=1575645639; h=from:to:date:message-id:references:in-reply-to: content-id:content-transfer-encoding:mime-version:subject; bh=JB4ZdRGs/+YNHRrNGeKhuj/Nb0gTtXAGG9pWMNtd55o=; b=exIkIA4HdsYaiRazQfkjB9/ACtnbkZQf/zHS5bC/w1TrtDSK+d5FrnZA RLUK0NgZAwbAgO9z12SH9HaeDtNIWM4KqU0d2ihy+kWt9wsM7t/xBm406 xMFgwqiT3eWDQ+U4Babz7d1ZoprjQGNmaiS704VQ0rm6vtF8ypCLfnGmD 7QXQ8IOTGOIkQOr9IIGT41zugC1lF4JtFnpbBkaf5qILfqesfBEytVe// sXr0a7vehRrxPUOZdsuRXBawrGNcF3ymsb+g5QGOopVpaJV5HYSZT7PdY f9fUsdYS8IpFUTq8FcsP/p0M1QBFtgJOpmbu7AqXoU5bdA56unBARehKy g==;
IronPort-SDR: 4vgF1KOsqAPeJvpjm5EojQAZbkHvTiIEQzP2yxBmjOnZNCoRHBpkbfYwUeFxxUbH+zyXUHDjcU VEeOiuzHx2OhCCxVlgYMO96sT9c1zsM3BtE9fE2PXLKp1JWTKLemjCkeW0bawNSLz/tyDOx1FL 97J9jFJm5KvrFNsvCCEW7AFbaoyb6bAMpSvKPBqKsoCZ73wCmaNznsBpE6UqQHU1mnkByZL4SV T2ezEDXEnO+DgthM5b4ZmajFUHgk9izyiYUlk3o3LfqSoqG6AyvseGvhYjC8nKOuSwlx8GI4zq Esk=
X-IronPort-AV: E=Sophos;i="5.69,285,1571702400"; d="scan'208";a="12207"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2E2BQDGcOpd/zGZrQphA4QzgR2BMQqEIZUSlwUXGwoJAQEBAQEBAQEBBwEYDQoBAQKDeUUCF4IjOBMCAwEBCwEBAQQBAQEBAQUDAQEBAoV0BiYBC4I7ImsvCQEyAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBBQIIBzQZBzUSAR8CAQMBASEROhsCAQgaAhIBARICAgIlCxUGAQYDAgQTgyIBgwatH4EyhD4CDkFAhQWBDiiMMYFCPoE4IIJMPoJkAQECAQEYgV4KJgECBYJBMoIsBJAdni0DB4Iuhx+JM4UjgkFzhnuPd45Kh0BeI5FiAgQCBAUCFYFpgXtwFRohKgGCQQlHERSCQI4ZhRSFP3QJAwEkjngNFYENgRABAQ
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1779.2; Fri, 6 Dec 2019 10:20:57 -0500
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%5]) with mapi id 15.01.1779.002; Fri, 6 Dec 2019 10:20:57 -0500
From: "Gould, James" <jgould@verisign.com>
To: "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] [regext] I-D Action: draft-ietf-regext-login-security-07.txt
Thread-Index: AQHVrEhNd8hk+j4cwEC2FerpU0U5ZKetONoA
Date: Fri, 06 Dec 2019 15:20:57 +0000
Message-ID: <6A2BC4DF-1DBF-4A74-B413-970925F237B9@verisign.com>
References: <157564541180.20931.16102592174717076219@ietfa.amsl.com>
In-Reply-To: <157564541180.20931.16102592174717076219@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.f.191014
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="utf-8"
Content-ID: <F0E1E0C140E0BA41B14E917D76B96AD3@verisign.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/RQ8KGaTFjcBRig1Np0IbhMRskDQ>
Subject: [regext] FW: I-D Action: draft-ietf-regext-login-security-07.txt
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2019 15:20:41 -0000
I posted draft-ietf-regext-login-security-07 to address Barry Leiba's feedback on the use of PRECIS for non-ASCII characters in passwords and the nit from Carlos Pignataro. -- JG James Gould Distinguished Engineer jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com> 703-948-3271 12061 Bluemont Way Reston, VA 20190 Verisign.com <http://verisigninc.com/> On 12/6/19, 10:17 AM, "regext on behalf of internet-drafts@ietf.org" <regext-bounces@ietf.org on behalf of internet-drafts@ietf.org> wrote: A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Registration Protocols Extensions WG of the IETF. Title : Login Security Extension for the Extensible Provisioning Protocol (EPP) Authors : James Gould Matthew Pozun Filename : draft-ietf-regext-login-security-07.txt Pages : 23 Date : 2019-12-06 Abstract: The Extensible Provisioning Protocol (EPP) includes a client authentication scheme that is based on a user identifier and password. The structure of the password field is defined by an XML Schema data type that specifies minimum and maximum password length values, but there are no other provisions for password management other than changing the password. This document describes an EPP extension that allows longer passwords to be created and adds additional security features to the EPP login command and response. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-regext-login-security/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-regext-login-security-07 https://datatracker.ietf.org/doc/html/draft-ietf-regext-login-security-07 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-regext-login-security-07 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ regext mailing list regext@ietf.org https://www.ietf.org/mailman/listinfo/regext
- [regext] I-D Action: draft-ietf-regext-login-secu… internet-drafts
- [regext] FW: I-D Action: draft-ietf-regext-login-… Gould, James