[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: WG Last Call: draft-ietf-sasl-scram-02

To: Simon Josefsson <simon@xxxxxxxxxxxxx>
Subject: Re: WG Last Call: draft-ietf-sasl-scram-02
From: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Date: Tue, 28 Jul 2009 16:43:38 -0500
Cc: Chris Newman <Chris.Newman@xxxxxxx>, Jeffrey Hutzelman <jhutz@xxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: <87tz0wjyd3.fsf@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
References: <ldvbpnouhy3.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxx> <> <6D6A0C3D583799FDB75CC23B@xxxxxxxxxxxxxxxxxxxxxx> <> <87k51tkn0w.fsf@xxxxxxxxxxxxxxxxxxx> <20090728161448.GO1020@xxxxxxx> <87tz0wjyd3.fsf@xxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Mutt/1.5.7i

On Tue, Jul 28, 2009 at 11:23:20PM +0200, Simon Josefsson wrote:
> Nicolas Williams <Nicolas.Williams@xxxxxxx> writes:
> > I'll be happy to see this SHOULD turn into a MUST.
> 
> The last sentence still seems necessary though.  So the paragraph
> becomes:
> 
>   Clients MUST choose the tls-unique channel binding type.  Servers MUST
>   choose the channel binding type indicated by the client, if they
>   support it.
> 
> I suspect we want SCRAM and GS2 to be consistent on this, right?  So
> both documents needs this change.

Yes.

Also, we should allow application protocols to specify a different CB
type.

   Clients MUST choose the default channel binding type for the
   application -- 'tls-unique' for any applications that don't specify
   one.  Servers MUST choose the channel binding type indicated by the
   client, or fail authentication if they don't support it.

Nico
--

Follow-Ups:
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Simon Josefsson

References:
- WG Last Call: draft-ietf-sasl-scram-02
  - From: Tom Yu
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Chris Newman
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Jeffrey Hutzelman
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Chris Newman
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Simon Josefsson
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Nicolas Williams
- Re: WG Last Call: draft-ietf-sasl-scram-02
  - From: Simon Josefsson

Prev by Date: Re: WG Last Call: draft-ietf-sasl-scram-02
Next by Date: Re: WG Last Call: draft-ietf-sasl-scram-02
Previous by thread: Re: WG Last Call: draft-ietf-sasl-scram-02
Next by thread: Re: WG Last Call: draft-ietf-sasl-scram-02
Index(es):
- Date
- Thread