Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing

To: EKR <ekr at networkresonance.com>
Subject: Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
From: Sam Hartman <hartmans-ietf at mit.edu>
Date: Tue, 06 Jun 2006 07:24:28 -0400
Cc: Digital Identity Exchange <dix at ietf.org>
In-reply-to: <86bqt7yvp5.fsf@raman.networkresonance.com> (Eric Rescorla's message of "Mon, 05 Jun 2006 17:27:50 -0700")
List-archive: <http://www1.ietf.org/pipermail/dix>
List-help: <mailto:dix-request@ietf.org?subject=help>
List-id: Digital Identity Exchange <dix.ietf.org>
List-post: <mailto:dix@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/dix>, <mailto:dix-request@ietf.org?subject=unsubscribe>
References: <tsllksse88e.fsf@cz.mit.edu> <A21400FB-F862-4F90-919A-523280B4012B@sxip.com> <tsl8xofvbxu.fsf@cz.mit.edu> <114A4275-DD35-48B3-85D3-B7B305E2967B@sxip.com> <tslpshrqo0o.fsf@cz.mit.edu> <4480B66D.8040109@redhat.com> <tslmzcsh8kg.fsf@cz.mit.edu> <86psho5z22.fsf@raman.networkresonance.com> <tslfyijpbba.fsf@cz.mit.edu> <86fyij47wu.fsf@raman.networkresonance.com> <tslac8rpa9d.fsf@cz.mit.edu> <86d5dn2sag.fsf@raman.networkresonance.com> <tsl64jfdx0w.fsf@cz.mit.edu> <86lksbyyff.fsf@raman.networkresonance.com> <tslfyijt9on.fsf@cz.mit.edu> <86bqt7yvp5.fsf@raman.networkresonance.com>
Reply-to: Digital Identity Exchange <dix at ietf.org>
User-agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3 (gnu/linux)

>>>>> "Eric" == Eric Rescorla <ekr at networkresonance.com> writes:

    Eric> Sam Hartman <hartmans-ietf at mit.edu> writes:
    >>>>>>> "Eric" == Eric Rescorla <ekr at networkresonance.com> writes:
    >>
    Eric> Sam Hartman <hartmans-ietf at mit.edu> writes:
    >> >> Yes, your understanding is correct.
    >> 
    Eric> Good. Then we have a basis to talk about them.
    >>  I basically agree with the general statements you have made.
    >> I believe that the specific example of age verification on the
    >> web will tend not to fall into the case where people use
    >> independently asserted idenity claims especially in the medium
    >> future.  I don't have high confidence in that belief though and
    >> I don't think it matters much whether I'm right or not.  We
    >> both agree that there will be third party claims.
    >> 
    >> As I've said before I think that whatever we design needs to
    >> eventually support claims and third party claims.

    Eric> I think there's a missing part to this statement: if you
    Eric> plan to support third party claims, I think there's a pretty
    Eric> strong argument that such claims need to be independently
    Eric> assertable.

Agreed.

_______________________________________________
dix mailing list
dix at ietf.org
https://www1.ietf.org/mailman/listinfo/dix

References:
- [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: John Merrells
- [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: John Merrells
- [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Pete Rowley
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Eric Rescorla
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Eric Rescorla
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Eric Rescorla
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Eric Rescorla
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Sam Hartman
- Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
  - From: Eric Rescorla

Prev by Date: Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
Next by Date: RE: [dix] Re: [Ietf-http-auth] BOF Request: WARP - WebAuthentication Resistant to Phishing
Previous by thread: Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
Next by thread: Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing
Index(es):
- Date
- Thread

Re: [dix] Re: [Ietf-http-auth] BOF Request: WARP - Web Authentication Resistant to Phishing

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.