Re: [saag] Input for conflict review of draft-secure-cookie-session-protocol
Barry Leiba <barryleiba@computer.org> Fri, 09 November 2012 13:41 UTC
Return-Path: <barryleiba.mailing.lists@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 417E421F8680 for <saag@ietfa.amsl.com>; Fri, 9 Nov 2012 05:41:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.977
X-Spam-Level:
X-Spam-Status: No, score=-102.977 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KupmzuPq9Aqc for <saag@ietfa.amsl.com>; Fri, 9 Nov 2012 05:41:32 -0800 (PST)
Received: from mail-la0-f44.google.com (mail-la0-f44.google.com [209.85.215.44]) by ietfa.amsl.com (Postfix) with ESMTP id 9FA4321F8621 for <saag@ietf.org>; Fri, 9 Nov 2012 05:41:31 -0800 (PST)
Received: by mail-la0-f44.google.com with SMTP id b11so3261587lam.31 for <saag@ietf.org>; Fri, 09 Nov 2012 05:41:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=7rFiIiL2f4rtE2q6Fl/BNPc7XbklZ5YMUXlQiHvpfBI=; b=PpxBWx+h9F/PMtrDgk3EFFfHnG7lUIq8vw4MyoOvioioiK6tg27DrwSnGCHjhhVaiL NeiV71Zr3KfujUFTjstuMaJpxAp8VHoXR72UfC6mdy0/p1kJ2AzefTGsJ7uAZKdiQedP 7cGHWIcKaDeXl8Gg9eIz1y1/Ct6FyhRNzAyqhu+7bmq2vRjnYYUVUIVns4fCBBheSStF CGOo6mIXkCzZkmJ5p62fl3QjP2EsSvBlmbSrTmmL+WZ7m7e0yR8xOnPUmk9TUEsgHCUz 6teYuX0MBBuLn6oQPkXJmm8ON46cVPmkMU2dDPfFIeEaEL3bS20IquiGxAjNdwRu3uRC iXJA==
MIME-Version: 1.0
Received: by 10.152.105.33 with SMTP id gj1mr10638019lab.49.1352468490554; Fri, 09 Nov 2012 05:41:30 -0800 (PST)
Sender: barryleiba.mailing.lists@gmail.com
Received: by 10.112.54.167 with HTTP; Fri, 9 Nov 2012 05:41:30 -0800 (PST)
In-Reply-To: <CAC4RtVCcS83ZqmCGNQ8drhm4CQmZ+MtKDJ4fBN9D7mR0-wVNcA@mail.gmail.com>
References: <CALaySJK5JBo1cbsqcX6hyk0gSkDciZkX3o=o+rg9rgNVqBeRhw@mail.gmail.com> <4B8D0A93-3838-4CDB-939B-1183718EFFFE@mnot.net> <CAC4RtVCcS83ZqmCGNQ8drhm4CQmZ+MtKDJ4fBN9D7mR0-wVNcA@mail.gmail.com>
Date: Fri, 09 Nov 2012 08:41:30 -0500
X-Google-Sender-Auth: xCLazMsPLOP50Tz5D9-6awz-Lvs
Message-ID: <CAC4RtVDUD4abp+TRo6Cj7uTbV8fE1X4AOacTNyKc-0kNzH=5hQ@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: saag <saag@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Subject: Re: [saag] Input for conflict review of draft-secure-cookie-session-protocol
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Nov 2012 13:41:36 -0000
I floated this about two weeks ago, and there've been no responses. This tells me that there is *not* interest in taking this document on in a working group, whether it be a revived httpstate WG, or the existing websec group, or whatever. It is on next week's telechat (15 Nov) for the IESG to decide how to respond to the Independent Stream Editor about the document. Unless we're convinced otherwise, I plan to propose the following for IESG approval: 1. The 5742 response is, "The IESG has concluded that this work is related to IETF work done in the websec and httpbis working groups, but this relationship does not prevent publishing." 2. The authors are asked to please add the company name to the title and introduction, to make it clear that this is their company's proposal, presented for the community's information. Barry > All that said, here's what I think, as the AD who's shepherding this > through the conflict review: > > 1. It's probably acceptable to do this through the ISE -- that is, > this probably does not *conflict* with IETF work. > > 2. It's probably better to do this through the IETF Stream -- it will > get better review and be a more solid document that way. > > 3. The authors are happy to do it that way; I've talked with them about it. > > 4. We could charter a new "son of httpstate" working group for this, > we could fit it into an existing working group (httpbis or appsawg, > likely), or we could do it as an AD-sponsored document (I would be > happy to sponsor it, and I suspect Stephen would also). If we did > that, it would go as Proposed Standard ... or we could let it > continue through the Independent Stream, as Informational. > > Thoughts?
- [saag] Input for conflict review of draft-secure-… Barry Leiba
- Re: [saag] [apps-discuss] Input for conflict revi… Barry Leiba
- Re: [saag] [apps-discuss] Input for conflict revi… Manger, James H
- Re: [saag] Input for conflict review of draft-sec… Willy Tarreau
- Re: [saag] Input for conflict review of draft-sec… SM
- Re: [saag] Input for conflict review of draft-sec… Barry Leiba
- Re: [saag] Input for conflict review of draft-sec… Barry Leiba
- Re: [saag] Input for conflict review of draft-sec… Tobias Gondrom
- [saag] Input for conflict review of draft-secure-… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Tobias Gondrom
- Re: [saag] Input for conflict review of draft-sec… Hannes Tschofenig
- Re: [saag] Input for conflict review of draft-sec… Stephen Farrell
- Re: [saag] Input for conflict review of draft-sec… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Stephen Farrell
- Re: [saag] Input for conflict review of draft-sec… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Willy Tarreau
- Re: [saag] Input for conflict review of draft-sec… Willy Tarreau
- Re: [saag] Input for conflict review of draft-sec… =JeffH
- Re: [saag] Input for conflict review of draft-sec… Tobias Gondrom
- Re: [saag] Input for conflict review of draft-sec… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Mark Nottingham
- Re: [saag] Input for conflict review of draft-sec… Thomas Fossati
- Re: [saag] Input for conflict review of draft-sec… Barry Leiba
- Re: [saag] Input for conflict review of draft-sec… Stephen Farrell
- Re: [saag] Input for conflict review of draft-sec… Mark Nottingham
- Re: [saag] Input for conflict review of draft-sec… Barry Leiba