[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Future of SASLprep

To: "Frank Ellermann" <hmdmhdfmhdjmzdtjmzdtzktdkztdjz@xxxxxxxxx>
Subject: Re: Future of SASLprep
From: Simon Josefsson <simon@xxxxxxxxxxxxx>
Date: Tue, 12 Aug 2008 13:57:36 +0200
Cc: ietf-sasl@xxxxxxx
In-reply-to: <g7rqp5$6n2$1@xxxxxxxxxxxxx> (Frank Ellermann's message of "Tue, 12 Aug 2008 13:06:05 +0200")
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <ldvlki6dqqu.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxx> <45F84F97.3B0D@xxxxxxxxxxxxxxxxx> <C51775F9-C7C7-435B-9D17-DDA0761DCBAB@xxxxxxxxx> <g7qd9g$lvi$1@xxxxxxxxxxxxx> <87tzdqa683.fsf_-_@xxxxxxxxxxxxxxxxxxx> <g7rqp5$6n2$1@xxxxxxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/22.2 (gnu/linux)

"Frank Ellermann" <nobody@xxxxxxxxxxxxxxxxx> writes:

>> Possibly SASLprep2 could be a profile of RFC 5198: applying
>> certain algorithmic tests to restrict some characters on
>> top of the RFC 5198 output.
>
> Simplified RFC 5198 is UTF-8 NFC minus some control chars.
> What further restrictions do you have in mind ?

See RFC 4013 section 2.3 and RFC 3454 section 3.1.  I'm sure that some
of those prohibited characters are a bad idea for passwords (because the
prohibited characters would have added entropy).  However, some of them
may make sense in order to avoid display or implementation issues (e.g.,
change-display properties and tagging characters).

/Simon

Follow-Ups:
- Re: Future of SASLprep
  - From: Frank Ellermann

References:
- WG Last Call: draft-ietf-sasl-crammd5-08.txt
  - From: Tom Yu
- Interoperability (was: WG Last Call: draft-ietf-sasl-crammd5-08.txt)
  - From: Frank Ellermann
- Re: Interoperability (was: WG Last Call: draft-ietf-sasl-crammd5-08.txt)
  - From: Kurt Zeilenga
- Re: Interoperability
  - From: Frank Ellermann
- Future of SASLprep
  - From: Simon Josefsson
- Re: Future of SASLprep
  - From: Frank Ellermann

Prev by Date: Re: Random data
Next by Date: Re: Random data
Previous by thread: Re: Future of SASLprep
Next by thread: Re: Future of SASLprep
Index(es):
- Date
- Thread