[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Document Action: 'Desired Enhancements to GSSAPI Version 3 Naming' to Informational RFC

To: IETF-Announce <ietf-announce at ietf.org>
Subject: Document Action: 'Desired Enhancements to GSSAPI Version 3 Naming' to Informational RFC
From: The IESG <iesg-secretary at ietf.org>
Date: Mon, 18 Sep 2006 16:49:56 -0400
Cc: kitten chair <kitten-chairs at tools.ietf.org>, Internet Architecture Board <iab at iab.org>, RFC Editor <rfc-editor at rfc-editor.org>
List-help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-id: ietf-announce.ietf.org
List-post: <mailto:ietf-announce@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>

The IESG has approved the following document:

- 'Desired Enhancements to GSSAPI Version 3 Naming '
   <draft-ietf-kitten-gss-naming-05.txt> as an Informational RFC

This document is the product of the Kitten (GSS-API Next Generation) 
Working Group. 

The IESG contact persons are Russ Housley and Sam Hartman.

A URL of this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-kitten-gss-naming-05.txt

Technical Summary

  The Generic Security Services API (GSS-API) provides a naming
  architecture that supports  name-based authorization.  GSS-API
  authenticates two named parties to each other.  Names can be stored on
  access control lists to make authorization decisions.  Advances in
  security mechanisms and the way implementers wish to use GSS-API
  require this model to be extended for the next version of GSS-API.  As
  people move within an organization or change their names, the name
  authenticated by GSS-API may change.  Using some sort of constant
  identifier would make ACLs more stable.  Some mechanisms such as
  public-key mechanisms do not have a single name to be used across all
  environments.  Other mechanisms such as Kerberos  may include group
  membership or role information as part of authentication.  This
  document motivates extensions to GSS-API naming and describes the
  extensions under discussion.

Working Group Summary

  This document is a product of the Kitten Working Group.  It describes
  the choices that are facing the Working Group for naming in GSS-API
  Version 3.

Protocol Quality

  This document was reviewed by Russ Housley for the IESG.


_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf-announce

Prev by Date: Document Action: 'Using OpenPGP keys for TLS authentication' to Experimental RFC
Next by Date: Document Action: 'A Framework for Inter-Domain Multiprotocol Label Switching Traffic Engineering' to Informational RFC
Previous by thread: Document Action: 'Using OpenPGP keys for TLS authentication' to Experimental RFC
Next by thread: Document Action: 'A Framework for Inter-Domain Multiprotocol Label Switching Traffic Engineering' to Informational RFC
Index(es):
- Date
- Thread