[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SCRAM with(out) GS2 (was Re: Holding gs2)

To: ietf-sasl@xxxxxxx
Subject: SCRAM with(out) GS2 (was Re: Holding gs2)
From: Arnt Gulbrandsen <arnt@xxxxxxxx>
Date: Wed, 30 Jan 2008 12:21:08 +0100
Cc: Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, Chris Newman <Chris.Newman@xxxxxxx>, Nicolas Williams <Nicolas.Williams@xxxxxxx>, Sam Hartman <hartmans-ietf@xxxxxxx>, Simon Josefsson <simon@xxxxxxxxxxxxx>
In-reply-to: <A700A598DE5875E9C792C999@xxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
References: <tslzlv55mon.fsf@xxxxxxx> <87bq7hx536.fsf@xxxxxxxxxxxxxxxxxxx> <tslk5m2ep8f.fsf@xxxxxxx> <87myqxnc8b.fsf@xxxxxxxxxxxxxxxxxxx> <479CCD23.4050600@xxxxxxxxx> <20080128155952.GZ12865@xxxxxxx> <A700A598DE5875E9C792C999@xxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx


Chris Newman writes:

I would personally have no problem implementing an all-binary SCRAMregardless of how ugly the ASN.1 and binary encoding happens to be(it just requires more lines of parsing code since I have to includeall the binary->text logic for debugging).

My two cents: I want SCRAM as a replacement for Digest-MD5 and to somedegree Cram-MD5. That may not be a good reason, but it's mine, and Iworry that GS2 hurts rather than helps.

As I see it, the people I want to implement SCRAM have Cram-MD5 and/or(bad) Digest-MD5 implementations, and most of them don't haveGSS-API/GS2 implementations. For these people, basing SCRAM on GS2means that they must read and understand more RFC text and theirimplementations will be more complex. Chris has no problem with that,but I fear that many people do. More text to read and understand meansa greater reluctance to implement, and in turn a slower pace ofadoption. More complexity means worse interoperation.


Arnt

Follow-Ups:
- Re: SCRAM with(out) GS2 (was Re: Holding gs2)
  - From: Nicolas Williams

References:
- Holding gs2
  - From: Sam Hartman
- Re: Holding gs2
  - From: Simon Josefsson
- Re: Holding gs2
  - From: Sam Hartman
- Re: Holding gs2
  - From: Simon Josefsson
- Re: Holding gs2
  - From: Alexey Melnikov
- Re: Holding gs2
  - From: Nicolas Williams
- Re: Holding gs2
  - From: Chris Newman

Prev by Date: Re: Holding gs2
Next by Date: Re: SCRAM with(out) GS2 (was Re: Holding gs2)
Previous by thread: Re: Holding gs2
Next by thread: Re: SCRAM with(out) GS2 (was Re: Holding gs2)
Index(es):
- Date
- Thread