Re: [TLS] the use cases for GSS-based TLS and the plea for

To: martin.rex at sap.com
Subject: Re: [TLS] the use cases for GSS-based TLS and the plea for
From: Jeffrey Altman <jaltman at secure-endpoints.com>
Date: Fri, 20 Jul 2007 14:45:53 -0400
Cc: tls at ietf.org, Nicolas.Williams at sun.com
In-reply-to: <200707201828.l6KISQgI011525@fs4113.wdf.sap.corp>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Openpgp: url=http://pgp.mit.edu
Organization: Secure Endpoints Inc.
References: <200707201828.l6KISQgI011525@fs4113.wdf.sap.corp>
Reply-to: jaltman at secure-endpoints.com
User-agent: Thunderbird 2.0.0.5 (Windows/20070716)

Martin Rex wrote:
> I have _never_ disputed this motivation.  And I certainly do not
> want to take this freedom away from the customer.  However, I clearly
> want to deny the vendor a compliance tag for not providing a fully
> functional option to the customer.
Martin:

That is exactly what mandatory to implement means.  The vendor must
implement it to be considered in compliance.

However, you can't mandate in an IETF standard what is deployed by the
users of the implementation. 

My requirement is that TLS be deployable without certificates if an
alternative mechanism for managing keys distribution is available.   I
have that today with RFC 2712.  

Jeffrey Altman

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- Re: [TLS] the use cases for GSS-based TLS and the plea for
  - From: Martin Rex

Prev by Date: Re: [TLS] the use cases for GSS-based TLS and the plea for
Next by Date: RE: [TLS] the use cases for GSS-based TLS and the plea for
Previous by thread: Re: [TLS] the use cases for GSS-based TLS and the plea for
Next by thread: Re: [TLS] the use cases for GSS-based TLS and the plea for
Index(es):
- Date
- Thread

Re: [TLS] the use cases for GSS-based TLS and the plea for

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.