[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Updated SASL And Channel Binding document (-03)

To: Kurt Zeilenga <Kurt.Zeilenga@xxxxxxxxx>
Subject: Re: Updated SASL And Channel Binding document (-03)
From: Simon Josefsson <simon@xxxxxxxxxxxxx>
Date: Tue, 26 May 2009 21:44:13 +0200
Cc: Nicolas Williams <Nicolas.Williams@xxxxxxx>, Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: <3EDC529D-31FE-41A7-814B-2BDD98BA85FE@xxxxxxxxx> (Kurt Zeilenga's message of "Tue, 26 May 2009 09:48:08 -0700")
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <20090421195036.GU1500@xxxxxxx> <874owhui8w.fsf@xxxxxxxxxxxxxxxxxxx> <20090422151927.GD1500@xxxxxxx> <4A17BF64.9070701@xxxxxxxxx> <87octh2yo3.fsf@xxxxxxxxxxxxxxxxxxx> <20090525181441.GU29258@xxxxxxx> <3EDC529D-31FE-41A7-814B-2BDD98BA85FE@xxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.94 (gnu/linux)

Kurt Zeilenga <Kurt.Zeilenga@xxxxxxxxx> writes:

> On May 25, 2009, at 11:14 AM, Nicolas Williams wrote:
>> I'm more than happy to leave SCRAM and GS2 as they are, which
>> effectively means that we punt on channel binding type negotiation,
>> leaving us with a preference for end-point channel binding types over
>> unique ones.
>
>
> Generally and with respect to SCRAM, I rather change the specification
> to always require the use of unique channel bindings.  I do understand
> however that some prefer use of end-point channel binding types in
> certain cases.

My preference is also the unique channel binding.

> One solution for SCRAM is to offer:
> 	SCRAM-SHA-1
> 	SCRAM-SHA-1-ENDPOINT
> 	SCRAM-SHA-1-UNIQUE

FWIW, I prefer that to the current approach.  This variant allows
implementers to chose which channel binding type to support.  The
*-UNIQUE variant needs to be the mandatory to implement because it is
the only with general applicability.

/Simon

Follow-Ups:
- Re: Updated SASL And Channel Binding document (-03)
  - From: Nicolas Williams

References:
- Updated SASL And Channel Binding document (-03)
  - From: Nicolas Williams
- Re: Updated SASL And Channel Binding document (-03)
  - From: Simon Josefsson
- Re: Updated SASL And Channel Binding document (-03)
  - From: Nicolas Williams
- Re: Updated SASL And Channel Binding document (-03)
  - From: Alexey Melnikov
- Re: Updated SASL And Channel Binding document (-03)
  - From: Simon Josefsson
- Re: Updated SASL And Channel Binding document (-03)
  - From: Nicolas Williams
- Re: Updated SASL And Channel Binding document (-03)
  - From: Kurt Zeilenga

Prev by Date: Re: Updated SASL And Channel Binding document (-03)
Next by Date: I-D Action:draft-ietf-sasl-scram-01.txt
Previous by thread: Re: Updated SASL And Channel Binding document (-03)
Next by thread: Re: Updated SASL And Channel Binding document (-03)
Index(es):
- Date
- Thread