[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)

To: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Subject: Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
From: Kurt Zeilenga <Kurt.Zeilenga@xxxxxxxxx>
Date: Sat, 30 May 2009 11:51:22 -0700
Cc: Jeffrey Hutzelman <jhutz@xxxxxxx>, Simon Josefsson <simon@xxxxxxxxxxxxx>, Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, SASL WG <ietf-sasl@xxxxxxx>
In-reply-to: <20090530180626.GU29258@xxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
References: <9659A4ED-92EF-4029-9F1A-FD15C6B956B3@xxxxxxxxx> <2EC8800EFECD82570732A792@xxxxxxxxxxxxxxxxxxxxxx> <CF23FDA2-68BB-4EFC-A15C-86A36C16F21B@xxxxxxxxx> <D4CCFC83CE0C68BD1D1F4225@xxxxxxxxxxxxxxxxxxxxxx> <20090529220540.GF29258@xxxxxxx> <B23BB819-E777-45C1-A461-33E09817E123@xxxxxxxxx> <20090530002258.GM29258@xxxxxxx> <2D8F7180-50CB-428E-8BB4-53C13D9307B8@xxxxxxxxx> <20090530052936.GP29258@xxxxxxx> <860073B0-EF92-4C4D-9B54-6A38B812BD70@xxxxxxxxx> <20090530180626.GU29258@xxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx



On May 30, 2009, at 11:06 AM, Nicolas Williams wrote:

By the way, I think you've convinced me that your concerns derive from
the YAP's violation of the channel binding abstraction, and that
therefore we need to consider the possibility that YAP is harmful.

I'd really like to keep YAP out of this. As I said before, I do notbelieve any text that we are likely to agree on for SCRAM and GS2 willhinder my desire to eventually publish YAP as experimental. And to gobeyond that, I don't think the introduce of ANY of the schemes beingdiscussed for negotiating channel binding types will hinder mepursuing YAP. The only think I can think of that would hinder YAP andsimilar mechanisms if RFC 4422 were to be revised to place what Iconsider to be undue restrictions on the design of mechanisms.However, I would argue (at the appropriate time) against theserestrictions on the general principles that SASL was intended to allowa wide range of mechanisms and we should be careful not to place unduerestrictions on the design of future mechanisms, using YAP as only anexample of why I think such restrictions are undue.


-- Kurt

References:
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Kurt Zeilenga
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Jeffrey Hutzelman
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Kurt Zeilenga
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Jeffrey Hutzelman
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Nicolas Williams
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Kurt Zeilenga
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Nicolas Williams
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Kurt Zeilenga
- Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
  - From: Nicolas Williams
- Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
  - From: Kurt Zeilenga
- Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
  - From: Nicolas Williams

Prev by Date: Re: Poll: use of TLS channel bindings in SCRAM
Previous by thread: Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
Next by thread: Re: Where do we stand? (Re: Poll: use of TLS channel bindings in SCRAM)
Index(es):
- Date
- Thread