Re: a dedicated SASL WG
"Kurt D. Zeilenga" <Kurt@OpenLDAP.org> Sat, 10 March 2001 21:52 UTC
Received: (from majordomo@localhost) by above.proper.com (8.9.3/8.9.3) id NAA19144 for ietf-sasl-bks; Sat, 10 Mar 2001 13:52:52 -0800 (PST)
Received: from pretender.boolean.net (root@router.boolean.net [198.144.206.49]) by above.proper.com (8.9.3/8.9.3) with ESMTP id NAA19139 for <ietf-sasl@imc.org>; Sat, 10 Mar 2001 13:52:50 -0800 (PST)
Received: from gypsy.OpenLDAP.org (gypsy.boolean.net [10.192.1.2]) by pretender.boolean.net (8.11.1/8.11.1/Boolean/Hub) with ESMTP id f2ALr4D97938; Sat, 10 Mar 2001 21:53:04 GMT (envelope-from Kurt@OpenLDAP.org)
Message-Id: <5.0.2.1.0.20010310123246.00a69b60@router.boolean.net>
X-Sender: guru@router.boolean.net
X-Mailer: QUALCOMM Windows Eudora Version 5.0.2
Date: Sat, 10 Mar 2001 13:53:03 -0800
To: "Raif S. Naffah" <raif@fl.net.au>
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: a dedicated SASL WG
Cc: SASL <ietf-sasl@imc.org>, jlinn@rsasecurity.com, jis@mit.edu, mleech@nortelnetworks.com, "Raif S. Naffah" <raif@forge.com.au>
In-Reply-To: <5.0.0.25.1.20010311061903.00a4a070@mail.syd.fl.net.au>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ietf-sasl@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-ID: <ietf-sasl.imc.org>
List-Unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
I actually intended to chat with JeffS and JohnM regarding rechartering of the (concluded) SASL WG at IETF#50... here are my thoughts. I believe the IETF needs to undertake the revision of SASL [RFC2222] and select SASL mechanisms to Draft Standard status as soon as possible so as not to impede the progress of IETF work dependent on RFC2222. I firmly believe that SASL itself and select mechanisms are suitable for publication as a Draft Standard. Hence, I would be supportive of chartering the a working group to take SASL and a few select mechanisms to Draft Standard status, in particular EXTERNAL, PLAIN, and DIGEST-MD5. Though this WG could also take on engineering of new mechanisms (including a replacement for GSSAPI), I believe this should be viewed as secondary to the above objective. I believe specification of many mechanisms should be done by other working groups or on an individual basis. I would recommend against taking on the Java SASL API work. The Java Community Program is working in this area and the IETF should avoid competing with the JCP. I also believe the use of SASL by application protocol should be left to Application Area working groups. Kurt At 06:39 AM 3/11/01 +1100, Raif S. Naffah wrote: >hi there, > >There are currently many SASL-related drafts other than the one (SASL GSS-API mechanisms <http://search.ietf.org/internet-drafts/draft-ietf-cat-sasl-gssapi-02.txt>) listed under the Common Authentication Technology WG drafts, namely: > >A. new SASL mechanisms: > > 1. Secure Remote Password SASL Mechanism > <http://search.ietf.org/internet-drafts/draft-burdis-cat-srp-sasl-04.txt> > > 2. SM2 -- A Session Management Capable SASL Mechanism > <http://search.ietf.org/internet-drafts/draft-naffah-cat-sasl-sm2-00.txt> > > 3. X.509 Authentication SASL Mechanism > <http://search.ietf.org/internet-drafts/draft-ietf-ldapext-x509-sasl-03.txt> > > 4. ISO/IEC 9798-3 Authentication SASL Mechanism > <http://search.ietf.org/internet-drafts/draft-zuccherato-9798-3-sasl-02.txt> > >B. Java SASL API: > > 5. The Java SASL Application Program Interface > <http://search.ietf.org/internet-drafts/draft-weltman-java-sasl-04.txt> > >C. Using SASL with other protocols: > > 6. Upgrading to SASL Within HTTP/1.1 > <http://search.ietf.org/internet-drafts/draft-burdis-http-sasl-00.txt> > > 7. SASL in HTTP/1.1 > <http://search.ietf.org/internet-drafts/draft-nystrom-http-sasl-00.txt> > > 8. LDAP Authentication Response Control > <http://search.ietf.org/internet-drafts/draft-weltman-ldapv3-auth-response-03.txt> > > >As clarified by the Common Authentication Technology (CAT) WG Chair, John Linn, SASL mechanisms, APIs, and SASL/protocol integration documents have not been work items of the CAT-WG, and CAT has itself been placed in an idle state, pending on possible advancement of its existing RFCs but not undertaking new work. > >My question to the list is: how ready, and/or willing, is the SASL community to charter a new WG dedicated to SASL? > > >TIA + cheers; >rsn > >cc: John Linn, Jeffrey Schiller, Marcus Leech.
- a dedicated SASL WG Raif S. Naffah
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Leif Johansson
- Re: a dedicated SASL WG Kurt D. Zeilenga
- RE: a dedicated SASL WG Paul Leach
- RE: a dedicated SASL WG Kurt D. Zeilenga
- new SASL Java implementation release Raif S. Naffah
- Re: a dedicated SASL WG Raif S. Naffah
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Chris Newman
- Re: a dedicated SASL WG Kurt D. Zeilenga
- Re: a dedicated SASL WG Lawrence Greenfield
- Re: a dedicated SASL WG Chris Newman
- Re: WG formation: AD advice and consent Jeff.Hodges