IETF68 SASL WG summary
Tom Yu <tlyu@MIT.EDU> Fri, 23 March 2007 02:07 UTC
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l2N27TJs012336 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 22 Mar 2007 19:07:29 -0700 (MST) (envelope-from owner-ietf-sasl@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id l2N27TT4012335; Thu, 22 Mar 2007 19:07:29 -0700 (MST) (envelope-from owner-ietf-sasl@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-sasl@mail.imc.org using -f
Received: from biscayne-one-station.mit.edu (BISCAYNE-ONE-STATION.MIT.EDU [18.7.7.80]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l2N277F6012320 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <ietf-sasl@imc.org>; Thu, 22 Mar 2007 19:07:28 -0700 (MST) (envelope-from tlyu@MIT.EDU)
Received: from outgoing.mit.edu (OUTGOING-AUTH.MIT.EDU [18.7.22.103]) by biscayne-one-station.mit.edu (8.13.6/8.9.2) with ESMTP id l2N274dC011814; Thu, 22 Mar 2007 22:07:04 -0400 (EDT)
Received: from cathode-dark-space.mit.edu (CATHODE-DARK-SPACE.MIT.EDU [18.18.1.96]) (authenticated bits=56) (User authenticated as tlyu@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.6/8.12.4) with ESMTP id l2N270hn020488 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Thu, 22 Mar 2007 22:07:03 -0400 (EDT)
Received: (from tlyu@localhost) by cathode-dark-space.mit.edu (8.12.9.20060308) id l2N270mA005096; Thu, 22 Mar 2007 22:07:00 -0400 (EDT)
To: ietf-sasl@imc.org, saag@MIT.EDU
Subject: IETF68 SASL WG summary
From: Tom Yu <tlyu@MIT.EDU>
Date: Thu, 22 Mar 2007 22:07:00 -0400
Message-ID: <ldvmz24vhkr.fsf@cathode-dark-space.mit.edu>
Lines: 54
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Scanned-By: MIMEDefang 2.42
X-Spam-Flag: NO
X-Spam-Score: 0.00
Sender: owner-ietf-sasl@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-ID: <ietf-sasl.imc.org>
List-Unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
SASL WG Wednesday, March 21, 2006, at 1300-1500 SUMMARY ======= Thanks to Bob Morgan for scribing. Document Status: draft-ietf-sasl-crammd5-08 in WGLC draft-ietf-sasl-gs2-07 in WGLC draft-ietf-sasl-gssapi-08 RFC 4752 draft-ietf-sasl-rfc2831bis-12 some issues... WGLC documents -- mostly only have minor issues. We need more reviewers for CRAM-MD5. Given problems with DIGEST-MD5 in terms of interoperability and implementability, there appears to be consensus to move DIGEST-MD5 (in the form of RFC 2831) to Historic. Presentations about several proposed alternative password-based mechanisms: draft-cridland-sasl-hexa-00.txt draft-newman-auth-scram-04.txt draft-zeilenga-sasl-yap-00.txt HEXA and SCRAM are somewhat similar and may end up being combined eventually. YAP may remain independent. There appears to be consensus for adopting at least one of these hash-based password mechanisms as a WG work item, and adopting some HEXA+SCRAM derivative as a replacement for DIGEST-MD5. There appears to be consensus that the WG doesn't yet have enough information about application requirements to determine whether one of these mechanisms or two of these mechansisms should be adopted. Kurt talked about interop reports, and there was discussion about the Draft Standard advancement process. Alexey talked about Sam's Discuss on the smtp-auth document, regarding mandating of the verification of server TLS certificates when using PLAIN over TLS. ACTION ITEMS ============ * in the next week, acquire more information about application requirements upon password-based mechanisms. * conclude WG Last Calls * recharter including DIGEST-MD5 replacement(s)
- IETF68 SASL WG summary Tom Yu