RE: [SPKM] Re: [67th IETF] SPKM3 BOF announcement
Razvan Trufasiu <Razvan.Trufasiu@hummingbird.com> Thu, 12 October 2006 22:36 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GY9A6-0007Am-UG; Thu, 12 Oct 2006 18:36:22 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GY9A5-0007Ah-Og for spkm@ietf.org; Thu, 12 Oct 2006 18:36:21 -0400
Received: from mx.hcl.com ([205.211.178.70] helo=MX.HUMMINGBIRD.COM) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GY9A3-0001eD-EX for spkm@ietf.org; Thu, 12 Oct 2006 18:36:21 -0400
Received: from tor01x6.hcl.com (smtp1.hcl.com [10.1.42.55] (may be forged)) by MX.HUMMINGBIRD.COM (8.12.10/8.12.10) with ESMTP id k9CMa4EV002330; Thu, 12 Oct 2006 18:36:08 -0400
Received: by smtp1.hcl.com with Internet Mail Service (5.5.2653.19) id <4W3R04RR>; Thu, 12 Oct 2006 18:35:56 -0400
Message-ID: <BFBFA757A7B953449AD27E2721514FF205925B60@tor01x5.hcl.com>
From: Razvan Trufasiu <Razvan.Trufasiu@hummingbird.com>
To: "'spkm@ietf.org'" <spkm@ietf.org>
Subject: RE: [SPKM] Re: [67th IETF] SPKM3 BOF announcement
Date: Thu, 12 Oct 2006 18:36:07 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
Content-Type: text/plain
X-Spam-Score: 0.1 (/)
X-Scan-Signature: b19722fc8d3865b147c75ae2495625f2
Cc: "'William A.(Andy) Adamson'" <andros@citi.umich.edu>, Dan Trufasiu <Dan.Trufasiu@hummingbird.com>, 'Olga Kornievskaia' <aglo@citi.umich.edu>
X-BeenThere: spkm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Low Infrastructure Public Key GSS mechanism <spkm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/spkm>, <mailto:spkm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/spkm>
List-Post: <mailto:spkm@ietf.org>
List-Help: <mailto:spkm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/spkm>, <mailto:spkm-request@ietf.org?subject=subscribe>
Errors-To: spkm-bounces@ietf.org
Hello, My name is Razvan Trufasiu, and I am in charge of developing an SPKM-3/LIPKey implementation for the Hummingbird NFS Maestro server. At the moment, Hummingbird NFSv4 implementation supports anonymous SPKM-3 and LIPKey, and the next version will hopefully implement mutual SPKM-3. Any of these are based upon the specs released in early 2006. The specs have already changed, from my understanding; however, updating the code to support this should be simple. For interoperability, currently Olga and I managed to run several Connectathon tests successfully, without Integrity or Privacy. We can connect (tentatively) with Integrity, and are working on being able to connect with Privacy, and run all the tests. There are several problems we are currently still addressing. The reason we have chosen to implement SPKM-3 or LIPKey is to provide an alternative GSS implementation to Kerberos v5. Kerberos is often difficult to set up, and the overhead of having a separate Kerberos server, in addition to the NFS client/server can be cumbersome for certain users. LIPKey and anonymous SPKM-3 are easy to set up and quick to deploy, even on large networks, without compromising the main security of GSS (although the anonymous part of either protocol does come with some problems, such as anonymous SPKM not doing any sort of client-side security checks). It would also be a huge asset if the implementation of this protocol turns out to be faster and more performing than Kerberos v5 (which it is not at the moment). Although we have a basic release of LIPKey, our implementation is still a work in progress, and depending on what spec change is proposed, it should be straight-forward to make it compatible with what we have so far. There will be exceptions, but I shall deal with those when they arise, and I still maintain that it is possible to adapt it to anything. -razvan _______________________________________________ SPKM mailing list SPKM@ietf.org https://www1.ietf.org/mailman/listinfo/spkm
- [SPKM] [67th IETF] SPKM3 BOF announcement Olga Kornievskaia
- [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Mike Eisler
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Mike Eisler
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement William A.(Andy) Adamson
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams
- RE: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Razvan Trufasiu
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Mike Eisler
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams
- Re: [SPKM] Re: [67th IETF] SPKM3 BOF announcement Nicolas Williams