RE: [TLS] TLS WG Chair Comments on draft-ietf-tls-authz-07
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [TLS] TLS WG Chair Comments on draft-ietf-tls-authz-07
Hi Melinda,
>On 2/12/09 1:16 PM, "Hannes Tschofenig"
><Hannes.Tschofenig at gmx.net> wrote:
>> The main issue I have been struggeling with these authorization
>> extensions inside TLS is that they happen at the wrong layer.
>
>I don't know about that - I think it really depends on how the
>TLS session is being used, etc.
Sure. A good example of SAML usage is WebSSO. Using SAML in that usage
scenario requires a bit more than just carrying around the SAML assertion.
> I think that the more ability
>traffic has to describe itself the better,
Not sure I understand that.
> and that there are
>some non-trivial advantages to carrying authorizations in-band.
Namely...
Ciao
Hannes
>
>Melinda
>
>_______________________________________________
>Ietf mailing list
>Ietf at ietf.org
>https://www.ietf.org/mailman/listinfo/ietf
>
Note Well: Messages sent to this mailing list are the opinions
of the senders and do not imply endorsement by the IETF.
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
