[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Calculation of SASL GS2 mechanism names

To: Simon Josefsson <jas@xxxxxxxxxxx>
Subject: Re: Calculation of SASL GS2 mechanism names
From: "Kurt D. Zeilenga" <Kurt@xxxxxxxxxxxx>
Date: Tue, 14 Nov 2006 08:54:45 -0800
Cc: Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, SASL WG <ietf-sasl@xxxxxxx>
In-reply-to: <87y7qehugy.fsf@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
References: <4558CE63.8000409@xxxxxxxxx> <87y7qehugy.fsf@xxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx

At 08:19 AM 11/14/2006, Simon Josefsson wrote:

>Alexey Melnikov <alexey.melnikov@xxxxxxxxx> writes:
>
>> The answer to my question might be obvious, but why can't we just use
>> SHA1 on a dot separated representation of a GSS-API OID?
>
>That would seem to work, and would avoid the complexities and pitfalls
>of DER-encoding.
>
>It would still be necessary to base32 encode and truncate the string,
>though, since mechanism names are limited to 20 characters.
>
>/Simon

If we go this way, the following ABNF can be used to describe
an OID in dotted-decimal form.

        numericoid = number 1*( DOT number )
        number  = DIGIT / ( LDIGIT 1*DIGIT )
        DIGIT   = %x30 / LDIGIT       ; "0"-"9"
        LDIGIT  = %x31-39             ; "1"-"9"

Regards, Kurt

References:
- Calculation of SASL GS2 mechanism names
  - From: Alexey Melnikov
- Re: Calculation of SASL GS2 mechanism names
  - From: Simon Josefsson

Prev by Date: Re: Calculation of SASL GS2 mechanism names
Previous by thread: Re: Calculation of SASL GS2 mechanism names
Index(es):
- Date
- Thread