[saag] HTTP-Auth report
Yoav Nir <ynir.ietf@gmail.com> Wed, 22 July 2015 17:37 UTC
Return-Path: <ynir.ietf@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 633DD1B2C3D for <saag@ietfa.amsl.com>; Wed, 22 Jul 2015 10:37:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2dIyYqS2NuyQ for <saag@ietfa.amsl.com>; Wed, 22 Jul 2015 10:36:59 -0700 (PDT)
Received: from mail-wi0-x231.google.com (mail-wi0-x231.google.com [IPv6:2a00:1450:400c:c05::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 890361B2C68 for <saag@ietf.org>; Wed, 22 Jul 2015 10:36:29 -0700 (PDT)
Received: by wibud3 with SMTP id ud3so163868236wib.1 for <saag@ietf.org>; Wed, 22 Jul 2015 10:36:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:content-transfer-encoding:subject:message-id:date :to:mime-version; bh=K4t4c1rmG9E+31JILM0gW0JexBJaWq9b5E34Pvn5e7o=; b=ZGlCaB7cNM897X/enUezYAVrCkWqRYrtmyCx1NrPyERQ1/5+91iVquPzlgP3mwVUu+ XFFqnKfKIv1tIcP3WiPvWSskjXmcz5bE5ghHHcm4SzvCs7KgQxQu/nMhrQDnoQIWSsnB LJ9qdUyG2JnyHD5G9yiw1yJkV0s0mJ1WYsjpOC+S4GLEAgILmkA+bz3nTQGcyLBKO89P wnZcbfdyvdkFGR8cquntYpLp6Mk8gY4afRpqKbnX7vsiO6DtEs/unN5739IDeBTpM3xd Dfoj07PQISNKE7+kUULcaokaMYxe5vw9ftFjAMLi8z6q9qW+ORCEXobXyCFcqRRB0Pt6 OZNw==
X-Received: by 10.180.36.129 with SMTP id q1mr8930032wij.10.1437586588335; Wed, 22 Jul 2015 10:36:28 -0700 (PDT)
Received: from ?IPv6:2001:67c:370:176:74f3:b0e8:107c:5d57? ([2001:67c:370:176:74f3:b0e8:107c:5d57]) by smtp.gmail.com with ESMTPSA id r8sm17772704wiz.5.2015.07.22.10.36.27 for <saag@ietf.org> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 22 Jul 2015 10:36:27 -0700 (PDT)
From: Yoav Nir <ynir.ietf@gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <B0C7E220-6138-49C0-9C91-447B3AB5BEEF@gmail.com>
Date: Wed, 22 Jul 2015 19:36:26 +0200
To: Security Area Advisory Group <saag@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\))
X-Mailer: Apple Mail (2.2102)
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/k5UUxDgxWOHtO3jf3XHyTp6sTnA>
Subject: [saag] HTTP-Auth report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Jul 2015 17:37:00 -0000
Hi The HTTP-Auth group met on Monday. We have a set of three documents for the MutualAuth authentication method and its algorithm framework, and the work on that has stalled. The group has resolved to attempt an aggressive model of resolving these issues on the mailing list. We also have another document - SCRAM - which is nearing completion and should reach WGLC before the next IETF. We also heard presentation for two potential new authentication methods, but for now we are not taking them on, at least until we see some progress on the existing documents. One other thing: Matt Lepinsky has stepped down as WG chair after taking on a teaching position. I’d like to take this opportunity to thank Matt for the time spent chairing HTTP-Auth and wish him luck. Yoav
- [saag] HTTP-Auth report Yoav Nir