[sasl] [Technical Errata Reported] RFC5802 (2651)
RFC Errata System <rfc-editor@rfc-editor.org> Tue, 30 November 2010 18:31 UTC
Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: sasl@core3.amsl.com
Delivered-To: sasl@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EE5033A6C04 for <sasl@core3.amsl.com>; Tue, 30 Nov 2010 10:31:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.342
X-Spam-Level:
X-Spam-Status: No, score=-102.342 tagged_above=-999 required=5 tests=[AWL=0.258, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S1ioHIHX2iLt for <sasl@core3.amsl.com>; Tue, 30 Nov 2010 10:31:15 -0800 (PST)
Received: from rfc-editor.org (rfc-editor.org [IPv6:2001:1890:1112:1::2f]) by core3.amsl.com (Postfix) with ESMTP id 294D63A6B46 for <sasl@ietf.org>; Tue, 30 Nov 2010 10:31:15 -0800 (PST)
Received: by rfc-editor.org (Postfix, from userid 30) id 70212E0702; Tue, 30 Nov 2010 10:32:27 -0800 (PST)
To: chris.newman@oracle.com, ams@toroid.org, Alexey.Melnikov@isode.com, Nicolas.Williams@oracle.com, turners@ieca.com, tim.polk@nist.gov, tlyu@mit.edu, kurt.zeilenga@isode.com
From: RFC Errata System <rfc-editor@rfc-editor.org>
Message-Id: <20101130183227.70212E0702@rfc-editor.org>
Date: Tue, 30 Nov 2010 10:32:27 -0800
X-Mailman-Approved-At: Wed, 01 Dec 2010 12:15:02 -0800
Cc: sasl@ietf.org, jehan@zemarmot.net, rfc-editor@rfc-editor.org
Subject: [sasl] [Technical Errata Reported] RFC5802 (2651)
X-BeenThere: sasl@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: SASL Working Group <sasl.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sasl>, <mailto:sasl-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sasl>
List-Post: <mailto:sasl@ietf.org>
List-Help: <mailto:sasl-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sasl>, <mailto:sasl-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Nov 2010 18:31:16 -0000
The following errata report has been submitted for RFC5802, "Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms". -------------------------------------- You may review the report below and at: http://www.rfc-editor.org/errata_search.php?rfc=5802&eid=2651 -------------------------------------- Type: Technical Reported by: Jehan Pagès <jehan@zemarmot.net> Section: 7 Original Text ------------- nonce = "r=" c-nonce [s-nonce] ;; Second part provided by server. c-nonce = printable s-nonce = printable Corrected Text -------------- nonce = "r=" c-nonce [s-nonce] ;; Second part provided by server. c-nonce = 1*(printable) s-nonce = 1*(printable) Notes ----- "printable" is defined this way: printable = %x21-2B / %x2D-7E ;; Printable ASCII except ",". ;; Note that any "printable" is also ;; a valid "value". Hence a "printable" is a single printable character (except ','). But a nonce is a "a sequence of random printable ASCII characters excluding ','" (section 5.1), as can also be seen by the examples (and common sense for a security feature using randomness). Instructions: ------------- This errata is currently posted as "Reported". If necessary, please use "Reply All" to discuss whether it should be verified or rejected. When a decision is reached, the verifying party (IESG) can log in to change the status and edit the report, if necessary. -------------------------------------- RFC5802 (draft-ietf-sasl-scram-11) -------------------------------------- Title : Salted Challenge Response Authentication Mechanism (SCRAM) SASL and GSS-API Mechanisms Publication Date : July 2010 Author(s) : C. Newman, A. Menon-Sen, A. Melnikov, N. Williams Category : PROPOSED STANDARD Source : Simple Authentication and Security Layer Area : Security Stream : IETF Verifying Party : IESG
- [sasl] [Technical Errata Reported] RFC5802 (2651) RFC Errata System