Skip to main content

Name Attributes for the GSS-API Extensible Authentication Protocol (EAP) Mechanism
draft-ietf-abfab-gss-eap-naming-07

Revision differences

Document history

Date Rev. By Action
2015-10-14
07 (System) Notify list changed from abfab-chairs@ietf.org, draft-ietf-abfab-gss-eap-naming@ietf.org to (None)
2014-01-06
07 (System) IANA registries were updated to include RFC7056
2013-12-31
07 (System) RFC published
2013-12-02
07 (System) RFC Editor state changed to AUTH48-DONE from AUTH48
2013-11-01
07 (System) RFC Editor state changed to AUTH48 from RFC-EDITOR
2013-10-16
07 (System) RFC Editor state changed to RFC-EDITOR from REF
2013-10-16
07 (System) RFC Editor state changed to REF from EDIT
2013-09-27
07 (System) RFC Editor state changed to EDIT from MISSREF
2012-11-28
07 Suresh Krishnan Request for Last Call review by GENART Completed: Ready. Reviewer: Suresh Krishnan.
2012-11-19
07 (System) IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor
2012-11-18
07 (System) IANA Action state changed to Waiting on RFC Editor from Waiting on Authors
2012-11-18
07 (System) IANA Action state changed to Waiting on Authors from In Progress
2012-11-16
07 Cindy Morgan State changed to RFC Ed Queue from Approved-announcement sent
2012-11-15
07 (System) IANA Action state changed to In Progress
2012-11-15
07 Amy Vezza State changed to Approved-announcement sent from Approved-announcement to be sent::Point Raised - writeup needed
2012-11-15
07 Amy Vezza IESG has approved the document
2012-11-15
07 Amy Vezza Closed "Approve" ballot
2012-11-15
07 Amy Vezza Ballot approval text was generated
2012-11-15
07 Amy Vezza Ballot writeup was changed
2012-11-14
07 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-07.txt
2012-10-11
06 Cindy Morgan State changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation
2012-10-11
06 Benoît Claise [Ballot Position Update] New position, No Objection, has been recorded for Benoit Claise
2012-10-11
06 Gonzalo Camarillo [Ballot Position Update] New position, No Objection, has been recorded for Gonzalo Camarillo
2012-10-10
06 Pete Resnick [Ballot Position Update] New position, No Objection, has been recorded for Pete Resnick
2012-10-10
06 Russ Housley
[Ballot comment]

  The authors have agreed to implement the suggestions from the Gen-ART
  Review by Suresh Krishnan on 8-Oct-2012.  These have not been …
[Ballot comment]

  The authors have agreed to implement the suggestions from the Gen-ART
  Review by Suresh Krishnan on 8-Oct-2012.  These have not been folded
  into the draft yet, but I am confident this will happen.
2012-10-10
06 Russ Housley [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley
2012-10-09
06 Wesley Eddy [Ballot Position Update] New position, No Objection, has been recorded for Wesley Eddy
2012-10-08
06 Martin Stiemerling [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling
2012-10-08
06 Robert Sparks [Ballot Position Update] New position, No Objection, has been recorded for Robert Sparks
2012-10-08
06 Adrian Farrel [Ballot Position Update] New position, No Objection, has been recorded for Adrian Farrel
2012-10-08
06 Ron Bonica [Ballot Position Update] New position, No Objection, has been recorded for Ronald Bonica
2012-10-07
06 Stewart Bryant [Ballot Position Update] New position, No Objection, has been recorded for Stewart Bryant
2012-10-04
06 Barry Leiba Ballot comment text updated for Barry Leiba
2012-10-04
06 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-06.txt
2012-10-04
05 Tero Kivinen Request for Last Call review by SECDIR Completed: Ready with Issues. Reviewer: Richard Barnes.
2012-10-04
05 Stephen Farrell State changed to IESG Evaluation from Waiting for AD Go-Ahead
2012-10-04
05 (System) State changed to Waiting for AD Go-Ahead from In Last Call
2012-10-03
05 Sean Turner [Ballot Position Update] New position, No Objection, has been recorded for Sean Turner
2012-10-03
05 Brian Haberman [Ballot Position Update] New position, No Objection, has been recorded for Brian Haberman
2012-10-02
05 Barry Leiba
[Ballot comment]
I'm not making this first comment a DISCUSS, but I think it's important to address it.  Feel free to chat with me about …
[Ballot comment]
I'm not making this first comment a DISCUSS, but I think it's important to address it.  Feel free to chat with me about it:

-- Section 8 --
  In this top-level registry, a sub-registry titled "GSS-API URN
  Parameters" is created.  Registration in this registry is by the IETF
  review or expert review procedures [RFC5226].  Registrations in this
  registry are generally only expected as part of protocols published
  as RFCs on the IETF stream; other URIs are expected to be better
  choices for non-IETf work.  Expert review is permitted mainly to
  permit early registration related to specifications under development
  when the community believes they have reach sufficient maturity.

IANA is taking this to mean that registrations are always done by IETF Review, and that Expert Review can only be used for early registrations that will later be ratified by IETF Review.  That's not how I read this text, though, so I want to check that IANA's interpretation is what you want.

As I read it, you intend Expert Review to apply *mainly* for early registration, but there's an implication that it could be used *instead* of IETF Review as well (otherwise, what does "mainly" mean?).  You also have no instructions or guidelines for the designated expert.  You talk about what "the community believes", but provide no guidance on judging that, nor any guidance for what else the designated expert should consider.

I strongly recommend that you re-write the registration policy to make it clear exactly when IETF Review applies and when Expert Review can be used, and to give some clear direction to the designated expert.

========

A nitty comment on idnits:

In the shepherd writeup:
  ID Nits says: "Unused Reference: 'I-D.ietf-kitten-gssapi-naming-exts'
  is defined on line 363, but no explicit reference was found in the text"
  This draft is referenced in paragraph 1 (Introduction)

idnits calls it out because there's no space between the citation and the word "to" that follows.  So it got confused.
2012-10-02
05 Barry Leiba [Ballot Position Update] New position, No Objection, has been recorded for Barry Leiba
2012-10-02
05 Pearl Liang
IANA has reviewed draft-ietf-abfab-gss-eap-naming-05 and has
the following comments:

IANA understands that, upon approval of this document, there are three
IANA actions which must be …
IANA has reviewed draft-ietf-abfab-gss-eap-naming-05 and has
the following comments:

IANA understands that, upon approval of this document, there are three
IANA actions which must be completed.

First, IANA is to create a new top-level registry in the IANA Matrix
located at:

http://www.iana.org/protocols/

This registry will be named "Generic Security Service Application Program
Interface Parameters" and will have a reference of [ RFC-to-be ].

Second, in the new registry created in task one above a new sub-registry titled
"GSS-API URN Parameters" will be created. Maintenance of this registry is by
the IETF review or expert review procedures as defined in RFC 5226.
Registrations in this this new subregistry will be via IETF review. Early
registrations are allowed through Expert Review.

There are initial registrations in this new sub-registry as follows:

Parameter Reference
--------------------------------+-----------------
radius-attribute [ RFC-to-be ]
federated-saml-assertion [ RFC-to-be ]
federated-saml-attribute [ RFC-to-be ]
federated-saml-nameid [ RFC-to-be ]

Third, IETF URN Sub-namespace for Registered Protocol Parameter Identifiers
sub-registry of the IETF Protocol Parameter Identifiers located at:

http://www.iana.org/assignments/params/params.xml

a new URN will be registered as follows:

Registered Parameter Identifier: gss
Reference: [ RFC-to-be ]
IANA Registry Reference: [ URL from step one above ]

IANA understands that these are the only actions required to be completed
upon approval of this document.

Note: The actions requested in this document will not be completed
until the document has been approved for publication as an RFC.
2012-10-02
05 Stephen Farrell Placed on agenda for telechat - 2012-10-11
2012-10-02
05 Stephen Farrell Ballot has been issued
2012-10-02
05 Stephen Farrell [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell
2012-10-02
05 Stephen Farrell Created "Approve" ballot
2012-10-02
05 Stephen Farrell Ballot writeup was changed
2012-10-02
05 Klaas Wierenga Changed protocol writeup
2012-09-28
05 Tero Kivinen Request for Last Call review by SECDIR is assigned to Richard Barnes
2012-09-28
05 Tero Kivinen Request for Last Call review by SECDIR is assigned to Richard Barnes
2012-09-20
05 Jean Mahoney Request for Last Call review by GENART is assigned to Suresh Krishnan
2012-09-20
05 Jean Mahoney Request for Last Call review by GENART is assigned to Suresh Krishnan
2012-09-20
05 Amy Vezza
The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
CC:
Reply-To: ietf@ietf.org
Subject: Last Call:  (Name Attributes for the GSS-API EAP …
The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
CC:
Reply-To: ietf@ietf.org
Subject: Last Call:  (Name Attributes for the GSS-API EAP mechanism) to Proposed Standard


The IESG has received a request from the Application Bridging for
Federated Access Beyond web WG (abfab) to consider the following
document:
- 'Name Attributes for the GSS-API EAP mechanism'
  as Proposed Standard

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
ietf@ietf.org mailing lists by 2012-10-04. Exceptionally, comments may be
sent to iesg@ietf.org instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.

Abstract


  The naming extensions to the Generic Security Services Application
  Programming interface provide a mechanism for applications to
  discover authorization and personalization information associated
  with GSS-API names.  The Extensible Authentication Protocol GSS-API
  mechanism allows an Authentication/Authorization/Accounting peer to
  provide authorization attributes along side an authentication
  response.  It also provides mechanisms to process Security Assertion
  Markup Language (SAML) messages provided in the AAA response.  This
  document describes the necessary information to use the naming
  extensions API to access that information.




The file can be obtained via
http://datatracker.ietf.org/doc/draft-ietf-abfab-gss-eap-naming/

IESG discussion can be tracked via
http://datatracker.ietf.org/doc/draft-ietf-abfab-gss-eap-naming/ballot/


No IPR declarations have been submitted directly on this I-D.


2012-09-20
05 Amy Vezza State changed to In Last Call from Last Call Requested
2012-09-20
05 Stephen Farrell Last call was requested
2012-09-20
05 Stephen Farrell Ballot approval text was generated
2012-09-20
05 Stephen Farrell Ballot writeup was generated
2012-09-20
05 Stephen Farrell State changed to Last Call Requested from AD Evaluation::AD Followup
2012-09-20
05 Stephen Farrell Last call announcement was generated
2012-09-19
05 (System) Sub state has been changed to AD Followup from Revised ID Needed
2012-09-19
05 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-05.txt
2012-09-07
04 Stephen Farrell State changed to AD Evaluation::Revised ID Needed from Publication Requested
2012-09-03
04 Stephen Farrell Intended Status changed to Proposed Standard
2012-09-03
04 Stephen Farrell IESG process started in state Publication Requested
2012-09-03
04 (System) Earlier history may be found in the Comment Log for draft-hartman-gss-eap-naming
2012-08-17
04 Klaas Wierenga IETF state changed to Submitted to IESG for Publication from WG Document
2012-08-14
04 Klaas Wierenga LC comments have been processed
2012-08-14
04 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-04.txt
2012-08-14
03 Klaas Wierenga Changed shepherd to Klaas Wierenga
2012-07-11
03 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-03.txt
2012-03-12
02 Sam Hartman New version available: draft-ietf-abfab-gss-eap-naming-02.txt
2011-10-21
01 (System) New version available: draft-ietf-abfab-gss-eap-naming-01.txt
2011-04-16
01 (System) Document has expired
2010-10-13
00 (System) New version available: draft-ietf-abfab-gss-eap-naming-00.txt