Authentication Indicator in Kerberos Tickets
draft-ietf-kitten-krb-auth-indicator-07
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2017-03-22
|
07 | (System) | RFC Editor state changed to AUTH48-DONE from AUTH48 |
2017-03-16
|
07 | (System) | RFC Editor state changed to AUTH48 from EDIT |
2017-02-16
|
07 | (System) | RFC Editor state changed to EDIT |
2017-02-16
|
07 | (System) | IESG state changed to RFC Ed Queue from Approved-announcement sent |
2017-02-16
|
07 | (System) | Announcement was received by RFC Editor |
2017-02-16
|
07 | (System) | IANA Action state changed to No IC |
2017-02-16
|
07 | Cindy Morgan | IESG state changed to Approved-announcement sent from Approved-announcement to be sent::Point Raised - writeup needed |
2017-02-16
|
07 | Cindy Morgan | IESG has approved the document |
2017-02-16
|
07 | Cindy Morgan | Closed "Approve" ballot |
2017-02-16
|
07 | Cindy Morgan | Ballot approval text was generated |
2017-02-16
|
07 | Cindy Morgan | Ballot writeup was changed |
2017-02-16
|
07 | Stephen Farrell | RFC Editor Note was changed |
2017-02-16
|
07 | Stephen Farrell | RFC Editor Note was changed |
2017-02-16
|
07 | Stephen Farrell | RFC Editor Note for ballot was generated |
2017-02-16
|
07 | Stephen Farrell | RFC Editor Note for ballot was generated |
2017-02-09
|
07 | (System) | IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed |
2017-02-09
|
07 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-07.txt |
2017-02-09
|
07 | (System) | New version approved |
2017-02-09
|
07 | (System) | Request for posting confirmation emailed to previous authors: "Anupam Jain" , "Nathaniel McCallum" , "Nathan Kinder" |
2017-02-09
|
07 | Nathaniel McCallum | Uploaded new revision |
2017-02-02
|
06 | Cindy Morgan | IESG state changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation |
2017-02-01
|
06 | Joel Jaeggli | [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli |
2017-02-01
|
06 | Alia Atlas | [Ballot Position Update] New position, No Objection, has been recorded for Alia Atlas |
2017-02-01
|
06 | Ben Campbell | [Ballot comment] Please expand CAMMAC and KDC on first mention. (Edited because I apparently can't spell CAMMAC) |
2017-02-01
|
06 | Ben Campbell | Ballot comment text updated for Ben Campbell |
2017-02-01
|
06 | Ben Campbell | [Ballot comment] Please expand CANMAC and KDC on first mention. |
2017-02-01
|
06 | Ben Campbell | [Ballot Position Update] New position, No Objection, has been recorded for Ben Campbell |
2017-02-01
|
06 | Jari Arkko | [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko |
2017-02-01
|
06 | Spencer Dawkins | [Ballot Position Update] New position, No Objection, has been recorded for Spencer Dawkins |
2017-02-01
|
06 | Alissa Cooper | [Ballot Position Update] New position, No Objection, has been recorded for Alissa Cooper |
2017-02-01
|
06 | Alexey Melnikov | [Ballot comment] ASN.1 needs a reference. Also, it would be good to have an example of how the Level of Assurance URIs can be used, … [Ballot comment] ASN.1 needs a reference. Also, it would be good to have an example of how the Level of Assurance URIs can be used, as I couldn't figure this out just by looking at already registered values from the referenced IANA registry. |
2017-02-01
|
06 | Alexey Melnikov | [Ballot Position Update] New position, No Objection, has been recorded for Alexey Melnikov |
2017-01-31
|
06 | Terry Manderson | [Ballot Position Update] New position, No Objection, has been recorded for Terry Manderson |
2017-01-31
|
06 | Deborah Brungard | [Ballot Position Update] New position, No Objection, has been recorded for Deborah Brungard |
2017-01-31
|
06 | Suresh Krishnan | [Ballot Position Update] New position, No Objection, has been recorded for Suresh Krishnan |
2017-01-31
|
06 | Alvaro Retana | [Ballot comment] It looks like rfc4120 is the registry... Hmmm...no real objection, just that it seems it would be useful to set one up. |
2017-01-31
|
06 | Alvaro Retana | [Ballot Position Update] New position, No Objection, has been recorded for Alvaro Retana |
2017-01-30
|
06 | Kathleen Moriarty | [Ballot Position Update] New position, No Objection, has been recorded for Kathleen Moriarty |
2017-01-30
|
06 | Mirja Kühlewind | [Ballot Position Update] New position, No Objection, has been recorded for Mirja Kühlewind |
2017-01-23
|
06 | Robert Sparks | Request for Telechat review by GENART Completed: Ready. Reviewer: Robert Sparks. Sent review to list. |
2017-01-19
|
06 | Jean Mahoney | Request for Telechat review by GENART is assigned to Robert Sparks |
2017-01-19
|
06 | Jean Mahoney | Request for Telechat review by GENART is assigned to Robert Sparks |
2017-01-17
|
06 | (System) | IANA Review state changed to IANA OK - No Actions Needed from Version Changed - Review Needed |
2017-01-16
|
06 | Stephen Farrell | Placed on agenda for telechat - 2017-02-02 |
2017-01-16
|
06 | Stephen Farrell | Ballot has been issued |
2017-01-16
|
06 | Stephen Farrell | [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell |
2017-01-16
|
06 | Stephen Farrell | Created "Approve" ballot |
2017-01-16
|
06 | Stephen Farrell | Ballot writeup was changed |
2017-01-16
|
06 | Stephen Farrell | IESG state changed to IESG Evaluation from Waiting for Writeup |
2017-01-10
|
06 | Gunter Van de Velde | Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Scott Bradner. |
2017-01-06
|
06 | (System) | IESG state changed to Waiting for Writeup from In Last Call |
2017-01-05
|
06 | Tero Kivinen | Request for Last Call review by SECDIR Completed: Has Nits. Reviewer: Christian Huitema. |
2017-01-05
|
06 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Christian Huitema |
2017-01-05
|
06 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Christian Huitema |
2017-01-05
|
06 | Tero Kivinen | Request for Last Call review by SECDIR Completed: Has Nits. Reviewer: Christian Huitema. |
2017-01-04
|
06 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-06.txt |
2017-01-04
|
06 | (System) | New version approved |
2017-01-04
|
06 | (System) | Request for posting confirmation emailed to previous authors: "Anupam Jain" , "Nathaniel McCallum" , "Nathan Kinder" |
2017-01-04
|
06 | Nathaniel McCallum | Uploaded new revision |
2017-01-03
|
05 | (System) | IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed |
2017-01-03
|
05 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-05.txt |
2017-01-03
|
05 | (System) | New version approved |
2017-01-03
|
05 | (System) | Request for posting confirmation emailed to previous authors: "Anupam Jain" , "Nathaniel McCallum" , "Nathan Kinder" |
2017-01-03
|
05 | Nathaniel McCallum | Uploaded new revision |
2016-12-29
|
04 | (System) | IANA Review state changed to IANA OK - No Actions Needed from IANA - Review Needed |
2016-12-29
|
04 | Sabrina Tanamal | (Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs: The IANA Services Operator has reviewed draft-ietf-kitten-krb-auth-indicator-04.txt, which is currently in Last Call, and has the following comments: We … (Via drafts-lastcall-comment@iana.org): IESG/Authors/WG Chairs: The IANA Services Operator has reviewed draft-ietf-kitten-krb-auth-indicator-04.txt, which is currently in Last Call, and has the following comments: We understand that this document doesn't require any registry actions. While it's often helpful for a document's IANA Considerations section to remain in place upon publication even if there are no actions, if the authors strongly prefer to remove it, we do not object. If this assessment is not accurate, please respond as soon as possible. Thank you, Sabrina Tanamal IANA Services Specialist PTI |
2016-12-29
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Christian Huitema |
2016-12-29
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Christian Huitema |
2016-12-29
|
04 | Tero Kivinen | Assignment of request for Last Call review by SECDIR to Tom Yu was rejected |
2016-12-24
|
04 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Scott Bradner |
2016-12-24
|
04 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Scott Bradner |
2016-12-22
|
04 | Robert Sparks | Request for Last Call review by GENART Completed: Ready with Nits. Reviewer: Robert Sparks. Sent review to list. |
2016-12-22
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Tom Yu |
2016-12-22
|
04 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Tom Yu |
2016-12-19
|
04 | Jean Mahoney | Request for Last Call review by GENART is assigned to Robert Sparks |
2016-12-19
|
04 | Jean Mahoney | Request for Last Call review by GENART is assigned to Robert Sparks |
2016-12-16
|
04 | Cindy Morgan | IANA Review state changed to IANA - Review Needed |
2016-12-16
|
04 | Cindy Morgan | The following Last Call announcement was sent out: From: The IESG To: "IETF-Announce" CC: kitten-chairs@ietf.org, "Benjamin Kaduk" , kitten@ietf.org, kaduk@mit.edu, draft-ietf-kitten-krb-auth-indicator@ietf.org, … The following Last Call announcement was sent out: From: The IESG To: "IETF-Announce" CC: kitten-chairs@ietf.org, "Benjamin Kaduk" , kitten@ietf.org, kaduk@mit.edu, draft-ietf-kitten-krb-auth-indicator@ietf.org, stephen.farrell@cs.tcd.ie Reply-To: ietf@ietf.org Sender: Subject: Last Call: (Authentication Indicator in Kerberos Tickets) to Proposed Standard The IESG has received a request from the Common Authentication Technology Next Generation WG (kitten) to consider the following document: - 'Authentication Indicator in Kerberos Tickets' as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the ietf@ietf.org mailing lists by 2017-01-06. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract This document updates RFC 4120 in order to specify an extension in the Kerberos protocol. It defines a new authorization data type AD- AUTHENTICATION-INDICATOR. The purpose of introducing this data type is to include an indicator of the strength of a client's authentication in service tickets so that application services can use it as an input into policy decisions. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-kitten-krb-auth-indicator/ IESG discussion can be tracked via https://datatracker.ietf.org/doc/draft-ietf-kitten-krb-auth-indicator/ballot/ No IPR declarations have been submitted directly on this I-D. |
2016-12-16
|
04 | Cindy Morgan | IESG state changed to In Last Call from Last Call Requested |
2016-12-16
|
04 | Stephen Farrell | Last call was requested |
2016-12-16
|
04 | Stephen Farrell | Ballot approval text was generated |
2016-12-16
|
04 | Stephen Farrell | Ballot writeup was generated |
2016-12-16
|
04 | Stephen Farrell | IESG state changed to Last Call Requested from Publication Requested |
2016-12-16
|
04 | Stephen Farrell | Last call announcement was changed |
2016-12-16
|
04 | Stephen Farrell | Last call announcement was generated |
2016-12-15
|
04 | Benjamin Kaduk | 1. Summary Benjamin Kaduk is the document shepherd. Stephen Farrell is the responsible Area Director. This document specifies a new authorization data element for Kerberos. … 1. Summary Benjamin Kaduk is the document shepherd. Stephen Farrell is the responsible Area Director. This document specifies a new authorization data element for Kerberos. This element is designed to contain an indication of the nature of the initial authentication, for subsequent use in policy decisions. This is a Standards-Track document as befits its intended role as a standard part of Kerberos implementations, and Updates RFC 4120 in accordance with that intention for the new data type to be implemented in tandem with implementations of RFC 4120. 2. Review and Consensus There is consensus for this document, which provides a mechanism to carry information about Kerberos initial authentications to applications so that richer authorization decisions can be made. The contents of the authentication indicator are partitioned into URIs to Level of Assurance Profiles or other (short) strings for site-local use. This document is short and simple, and had broad support for adoption when it was first introduced, even eliciting comments from WG participants that are usually silent. There was a minor question of whether the description of what the semantics conveyey by the authenticaiton indicator are was sufficiently unambiguous, but the current text does seem to be sufficient ("indicates that a particular set of requirements was met during the initial authentication"). This document received sufficient review and has broad interest; it should have been published much sooner but for inaction of the shepherd. 3. Intellectual Property There are no intellectual property disclosures against this document, and it is so simple that the existence of any related IPR seems minimal. 4. Other Points This document makes no request of IANA, as the relevant assigned number has already been assigned, and is managed by the Kerberos numbers registrar, not IANA. idnits warns of potential pre-RFC5378 work (due to Updates: 4120 where 4120 is pre-5378), but contains no content from 4120 and is thus correct as-is. |
2016-12-15
|
04 | Benjamin Kaduk | Responsible AD changed to Stephen Farrell |
2016-12-15
|
04 | Benjamin Kaduk | IETF WG state changed to Submitted to IESG for Publication from Waiting for WG Chair Go-Ahead |
2016-12-15
|
04 | Benjamin Kaduk | IESG state changed to Publication Requested |
2016-12-15
|
04 | Benjamin Kaduk | IESG process started in state Publication Requested |
2016-12-15
|
04 | Benjamin Kaduk | The -04 addresses the concerns raised during shepherd review. |
2016-12-15
|
04 | Benjamin Kaduk | Tags Revised I-D Needed - Issue raised by WGLC, Doc Shepherd Follow-up Underway cleared. |
2016-12-15
|
04 | Benjamin Kaduk | Changed consensus to Yes from Unknown |
2016-12-15
|
04 | Benjamin Kaduk | Intended Status changed to Proposed Standard from None |
2016-12-15
|
04 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-04.txt |
2016-12-15
|
04 | (System) | New version approved |
2016-12-15
|
04 | (System) | Request for posting confirmation emailed to previous authors: "Anupam Jain" , "Nathaniel McCallum" , "Nathan Kinder" |
2016-12-15
|
04 | Nathaniel McCallum | Uploaded new revision |
2016-11-17
|
03 | Benjamin Kaduk | Tags Revised I-D Needed - Issue raised by WGLC, Doc Shepherd Follow-up Underway set. |
2016-11-17
|
03 | Benjamin Kaduk | IETF WG state changed to Waiting for WG Chair Go-Ahead from WG Consensus: Waiting for Write-Up |
2016-11-17
|
03 | Benjamin Kaduk | Changed document writeup |
2016-09-28
|
03 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-03.txt |
2016-09-28
|
03 | Nathaniel McCallum | New version approved |
2016-09-28
|
03 | Nathaniel McCallum | Request for posting confirmation emailed to previous authors: "Anupam Jain" , "Nathaniel McCallum" , "Nathan Kinder" |
2016-09-28
|
03 | (System) | Uploaded new revision |
2016-08-30
|
02 | Benjamin Kaduk | Notification list changed to "Benjamin Kaduk" <kaduk@mit.edu> |
2016-08-30
|
02 | Benjamin Kaduk | Document shepherd changed to Benjamin Kaduk |
2016-05-16
|
02 | Benjamin Kaduk | IETF WG state changed to WG Consensus: Waiting for Write-Up from WG Document |
2016-05-16
|
02 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-02.txt |
2016-05-16
|
01 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-01.txt |
2015-12-23
|
00 | Benjamin Kaduk | The individual submission document was adopted as a WG document. |
2015-12-23
|
00 | Benjamin Kaduk | This document now replaces draft-jain-kitten-krb-auth-indicator instead of None |
2015-02-17
|
00 | Nathaniel McCallum | New version available: draft-ietf-kitten-krb-auth-indicator-00.txt |