Hi. I'd like to give my take on the core documents and where I think we are in the hopes of soliciting feedback.
Architecture: We have an initial version out. We've received a lot of feedback from Jim and some from Alexey that we need to integrate. We need to write a security considerations section and we need to write sections on proxy behavior. In my opinion, it's more important to focus on the technical specs at this point than the architecture document. We definitely should have some update by IETF 82 to make forward prograss, but I don't think it is critical that it be complete. In effect I'm arguing that the initial order of our milestones is wrong and that we want to conclude core specs before architecture. * gss-eap: I think this is complete enough that we can get significant review. There are some open ends: * Actually including an OID from the OID registry * Including the error codes that you might want to return * Including a sample token * Some figures might be nice. If people write figures I'll include them:-) But I believe the protocol is well specified enough to have an informed discussion. * aaa-saml. we've had several discussions of this. We need to specify more semantics to address issues Jim and I have raised.. We have a description of the attribute. We need to turn that into descriptions of the semantics of the attribute. In effect it needs to be more of a SAML binding. The fact that this is not written down is hurting us and this doc should be a real priority. * gss-eap-naming: This document needs and will get a major update. It needs to reflect changes in naming extensions. When this document was written it was as much an argument that naming extensions was broken as it was a description of how to do things in GSS-EAP. Never the less we've gotten significant feedback from Jim and I think we'll be in very good shape for review once this feedback is integrated into the document. --Sam _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
