Hi All, I had posted to this list a while back describing a new effort in the works to standardize a multi-party, application level SSL protocol called MashSSL (can also be used for two party app level SSL). As an update:
- The protocol is now in Verision 1.2.0.open released under the W3C royalty free guidelines as well as the Open Web Foundation IPR. - This spec is being worked on in the W3C MashSSL XG<http://www.w3.org/2005/Incubator/MashSSL/> (Thomas Hardjono represents the MIT Kerberos Foundation in the XG). - There is a group called the MashSSL Alliance <http://www.mashssl.org>which seeks to evangelize the standard. MIT Kerberos Foundation is a founding member of the alliance. As a key goal is to build in Kerberos from the beginning, we welcome support from you (costs nothing to join, no obligations, just an expression of support really). - Software implementing MashSSL, including a Gateway that uses SPNEGO to allow Kerberos authentication cross domain can be found at http://www.safemashups.com/software_downloads.html. All the two sites need is willingness to trust each other's SSL certs (or common root). The software is currently released under a combination of GPL and Free BSD. Hope you find it useful Please let me know if you have any questions. Regards, Ravi Ganesan [email protected] www.findravi.com ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
