Re: Call for discussion topics for Apps Area meeting in Hiroshima

To: <dcrocker at bbiw.net>, "Peter Saint-Andre" <stpeter at stpeter.im>
Subject: Re: Call for discussion topics for Apps Area meeting in Hiroshima
From: "tom.petch" <cfinss at dial.pipex.com>
Date: Wed, 28 Oct 2009 18:18:52 +0100
Cc: apps-discuss at ietf.org
Delivered-to: apps-discuss at core3.amsl.com
List-archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-post: <mailto:apps-discuss@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
References: <4AE84A4A.7010401 at isode.com> <4AE85A06.5020305 at stpeter.im> <4AE86D62.3070907 at dcrocker.net>
Reply-to: "tom.petch" <cfinss at dial.pipex.com>

----- Original Message -----
From: "Dave CROCKER" <dhc at dcrocker.net>
Sent: Wednesday, October 28, 2009 5:12 PM
>
> Peter Saint-Andre wrote:
> > I'd like to discuss draft-saintandre-tls-server-id-check so that we can
> > get closer to consensus about what exactly we want to cover in that I-D
> > and whether we need additional I-Ds for related topics.
>
> If I read the draft correctly:
>
>     "If a client wishes to connect to a server securely, it needs to check
>     the identity of the server so that it can determine if the server is
>     what it claims to be"
>
> seems to be the salient statement about the problem to be solved.
>
> Can you elaborate a bit? I'm only looking for a somewhat more extensive spec
of
> your topic goal, rather than trying resolving it, here.

Dave

We did discuss scope back in June without anything very concrete
emerging, apart from limiting ourselves to X.509, but there was a
faint consensus for a cookbook that other RFC would then refer to,
selecting a profile, when wanting to verify that a certificate received
over a security protocol matched something that the box had 'configured'
into it.

Tom Petch

> d/
> --
>
>    Dave Crocker
>    Brandenburg InternetWorking
>    bbiw.net

References:
- Call for discussion topics for Apps Area meeting in Hiroshima
  - From: Alexey Melnikov
- Re: Call for discussion topics for Apps Area meeting in Hiroshima
  - From: Peter Saint-Andre
- Re: Call for discussion topics for Apps Area meeting in Hiroshima
  - From: Dave CROCKER

Prev by Date: identity checking redux (was: Re: Call for discussion topics for Apps Area meeting in Hiroshima)
Next by Date: Re: Identity Checking in Application Protocols
Previous by thread: Re: identity checking redux (was: Re: Call for discussion topics forApps Area meeting in Hiroshima)
Next by thread: draft-nottingham-site-meta-03 --> -04
Index(es):
- Date
- Thread

Re: Call for discussion topics for Apps Area meeting in Hiroshima

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.