Re: a dedicated SASL WG
"Kurt D. Zeilenga" <Kurt@OpenLDAP.org> Sat, 10 March 2001 21:52 UTC
Received: (from majordomo@localhost) by above.proper.com (8.9.3/8.9.3) id NAA19144 for ietf-sasl-bks; Sat, 10 Mar 2001 13:52:52 -0800 (PST)
Received: from pretender.boolean.net (root@router.boolean.net [198.144.206.49]) by above.proper.com (8.9.3/8.9.3) with ESMTP id NAA19139 for <ietf-sasl@imc.org>; Sat, 10 Mar 2001 13:52:50 -0800 (PST)
Received: from gypsy.OpenLDAP.org (gypsy.boolean.net [10.192.1.2]) by pretender.boolean.net (8.11.1/8.11.1/Boolean/Hub) with ESMTP id f2ALr4D97938; Sat, 10 Mar 2001 21:53:04 GMT (envelope-from Kurt@OpenLDAP.org)
Message-Id: <5.0.2.1.0.20010310123246.00a69b60@router.boolean.net>
X-Sender: guru@router.boolean.net
X-Mailer: QUALCOMM Windows Eudora Version 5.0.2
Date: Sat, 10 Mar 2001 13:53:03 -0800
To: "Raif S. Naffah" <raif@fl.net.au>
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: a dedicated SASL WG
Cc: SASL <ietf-sasl@imc.org>, jlinn@rsasecurity.com, jis@mit.edu, mleech@nortelnetworks.com, "Raif S. Naffah" <raif@forge.com.au>
In-Reply-To: <5.0.0.25.1.20010311061903.00a4a070@mail.syd.fl.net.au>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ietf-sasl@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-ID: <ietf-sasl.imc.org>
List-Unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
I actually intended to chat with JeffS and JohnM regarding
rechartering of the (concluded) SASL WG at IETF#50... here
are my thoughts.
I believe the IETF needs to undertake the revision of
SASL [RFC2222] and select SASL mechanisms to Draft
Standard status as soon as possible so as not to
impede the progress of IETF work dependent on RFC2222.
I firmly believe that SASL itself and select mechanisms
are suitable for publication as a Draft Standard.
Hence, I would be supportive of chartering the
a working group to take SASL and a few select mechanisms
to Draft Standard status, in particular EXTERNAL, PLAIN,
and DIGEST-MD5.
Though this WG could also take on engineering of new
mechanisms (including a replacement for GSSAPI), I believe
this should be viewed as secondary to the above objective.
I believe specification of many mechanisms should be done
by other working groups or on an individual basis.
I would recommend against taking on the Java SASL API work.
The Java Community Program is working in this area and the
IETF should avoid competing with the JCP.
I also believe the use of SASL by application protocol
should be left to Application Area working groups.
Kurt
At 06:39 AM 3/11/01 +1100, Raif S. Naffah wrote:
>hi there,
>
>There are currently many SASL-related drafts other than the one (SASL GSS-API mechanisms <http://search.ietf.org/internet-drafts/draft-ietf-cat-sasl-gssapi-02.txt>) listed under the Common Authentication Technology WG drafts, namely:
>
>A. new SASL mechanisms:
>
> 1. Secure Remote Password SASL Mechanism
> <http://search.ietf.org/internet-drafts/draft-burdis-cat-srp-sasl-04.txt>
>
> 2. SM2 -- A Session Management Capable SASL Mechanism
> <http://search.ietf.org/internet-drafts/draft-naffah-cat-sasl-sm2-00.txt>
>
> 3. X.509 Authentication SASL Mechanism
> <http://search.ietf.org/internet-drafts/draft-ietf-ldapext-x509-sasl-03.txt>
>
> 4. ISO/IEC 9798-3 Authentication SASL Mechanism
> <http://search.ietf.org/internet-drafts/draft-zuccherato-9798-3-sasl-02.txt>
>
>B. Java SASL API:
>
> 5. The Java SASL Application Program Interface
> <http://search.ietf.org/internet-drafts/draft-weltman-java-sasl-04.txt>
>
>C. Using SASL with other protocols:
>
> 6. Upgrading to SASL Within HTTP/1.1
> <http://search.ietf.org/internet-drafts/draft-burdis-http-sasl-00.txt>
>
> 7. SASL in HTTP/1.1
> <http://search.ietf.org/internet-drafts/draft-nystrom-http-sasl-00.txt>
>
> 8. LDAP Authentication Response Control
> <http://search.ietf.org/internet-drafts/draft-weltman-ldapv3-auth-response-03.txt>
>
>
>As clarified by the Common Authentication Technology (CAT) WG Chair, John Linn, SASL mechanisms, APIs, and SASL/protocol integration documents have not been work items of the CAT-WG, and CAT has itself been placed in an idle state, pending on possible advancement of its existing RFCs but not undertaking new work.
>
>My question to the list is: how ready, and/or willing, is the SASL community to charter a new WG dedicated to SASL?
>
>
>TIA + cheers;
>rsn
>
>cc: John Linn, Jeffrey Schiller, Marcus Leech.
- a dedicated SASL WG Raif S. Naffah
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Leif Johansson
- Re: a dedicated SASL WG Kurt D. Zeilenga
- RE: a dedicated SASL WG Paul Leach
- RE: a dedicated SASL WG Kurt D. Zeilenga
- new SASL Java implementation release Raif S. Naffah
- Re: a dedicated SASL WG Raif S. Naffah
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Chris Newman
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Lawrence Greenfield
- Re: a dedicated SASL WG Chris Newman
- Re: WG formation: AD advice and consent Jeff.Hodges