RE: [Ietf-http-auth] Re: Next step on web phishingdraft(draft-hartman-webauth-phishing-05.txt)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Ietf-http-auth] Re: Next step on web phishingdraft(draft-hartman-webauth-phishing-05.txt)

To: "'Hallam-Baker, Phillip'" <pbaker at verisign.com>, "'Eliot Lear'" <lear at cisco.com>, "'IETF Discussion'" <ietf at ietf.org>, <ietf-http-auth at lists.osafoundation.org>
Subject: RE: [Ietf-http-auth] Re: Next step on web phishingdraft(draft-hartman-webauth-phishing-05.txt)
From: "Dan Schutzer" <dan.schutzer at fstc.org>
Date: Mon, 10 Sep 2007 10:24:20 -0400
Cc:
In-reply-to: <198A730C2044DE4A96749D13E167AD37013EDBEC@MOU1WNEXMB04.vcorp.ad.vrsn.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <46E4EB6D.4070008@cisco.com> <198A730C2044DE4A96749D13E167AD37013EDBEC@MOU1WNEXMB04.vcorp.ad.vrsn.com>
Thread-index: AcfzeDdGR2NG6P9aQSevg/xXjh8udwANKVAwAAJWXLA=

I agree with Phillips comments and the FSTC stands ready to help

-----Original Message-----
From: Hallam-Baker, Phillip [mailto:pbaker at verisign.com] 
Sent: Monday, September 10, 2007 9:21 AM
To: Eliot Lear; IETF Discussion; ietf-http-auth at lists.osafoundation.org
Subject: RE: [Ietf-http-auth] Re: Next step on web
phishingdraft(draft-hartman-webauth-phishing-05.txt)


> [mailto:ietf-http-auth-bounces at osafoundation.org] On Behalf 
> Of Eliot Lear

> Perhaps Sam and Lisa can explain a bit more as to what 
> process they intend to use.  It seems that Alexey is 
> providing a forum for discussion to improve the document, and 
> I see nothing wrong with that.  I would imagine that both the 
> IESG and the community will still get their say, so what 
> precisely is the problem?
> 
> This having been said, it seems to me that in order to 
> address EKR's (and perhaps others') concerns, the document 
> will need substantial work.  I welcome efforts to improve 
> that work.  Where should that happen?  Must Sam do it alone?

Its an architecture issue. It is the type of issue that I would like to see
the IAB take up in combination with the other principal stakeholders here -
the banks, the ISPs.

We do have some resources to draw on here, the Anti-Phishing Working Group
and FSTC.

_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf



_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

References:
- Re: Next step on web phishing draft (draft-hartman-webauth-phishing-05.txt)
  - From: Eliot Lear
- RE: [Ietf-http-auth] Re: Next step on web phishing draft(draft-hartman-webauth-phishing-05.txt)
  - From: Hallam-Baker, Phillip

Prev by Date: Re: [Ietf-http-auth] Re: Next step on web phishing draft (draft-hartman-webauth-phishing-05.txt)
Next by Date: Re: [Ietf-http-auth] Re: Next step on web phishing draft (draft-hartman-webauth-phishing-05.txt)
Previous by thread: RE: [Ietf-http-auth] Re: Next step on web phishing draft(draft-hartman-webauth-phishing-05.txt)
Next by thread: Re: [Ietf-http-auth] Re: Next step on web phishing draft (draft-hartman-webauth-phishing-05.txt)
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

RE: [Ietf-http-auth] Re: Next step on web phishingdraft(draft-hartman-webauth-phishing-05.txt)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.