Additional Kerberos Naming Constraints
draft-ietf-krb-wg-naming-07
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2010-12-02
|
07 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
2010-12-01
|
07 | (System) | IANA Action state changed to Waiting on RFC Editor from In Progress |
2010-12-01
|
07 | (System) | IANA Action state changed to In Progress from Waiting on Authors |
2010-11-10
|
07 | Cindy Morgan | State changed to RFC Ed Queue from Approved-announcement sent. |
2010-11-09
|
07 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
2010-11-09
|
07 | (System) | IANA Action state changed to In Progress |
2010-11-09
|
07 | Cindy Morgan | IESG state changed to Approved-announcement sent |
2010-11-09
|
07 | Cindy Morgan | IESG has approved the document |
2010-11-09
|
07 | Cindy Morgan | Closed "Approve" ballot |
2010-10-08
|
07 | (System) | Removed from agenda for telechat - 2010-10-07 |
2010-10-07
|
07 | Cindy Morgan | State changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation by Cindy Morgan |
2010-10-07
|
07 | Alexey Melnikov | [Ballot comment] In section 3.1: is the string "WELLKNOWN" case sensitive? 6. IANA Considerations This document provides the framework for defining well-known Kerberos … [Ballot comment] In section 3.1: is the string "WELLKNOWN" case sensitive? 6. IANA Considerations This document provides the framework for defining well-known Kerberos names and Kerberos realms. A new IANA registry should be created to contain well-known Kerberos names and Kerberos realms that are defined based on this document. The evaluation policy is "Specification Required". This needs (at least) an Informative reference to RFC 5226. |
2010-10-07
|
07 | Alexey Melnikov | [Ballot Position Update] New position, No Objection, has been recorded by Alexey Melnikov |
2010-10-06
|
07 | Ron Bonica | [Ballot Position Update] New position, No Objection, has been recorded by Ron Bonica |
2010-10-06
|
07 | Jari Arkko | [Ballot Position Update] New position, No Objection, has been recorded by Jari Arkko |
2010-10-06
|
07 | Robert Sparks | [Ballot Position Update] New position, No Objection, has been recorded by Robert Sparks |
2010-10-06
|
07 | Stewart Bryant | [Ballot Position Update] New position, No Objection, has been recorded by Stewart Bryant |
2010-10-06
|
07 | Gonzalo Camarillo | [Ballot Position Update] New position, No Objection, has been recorded by Gonzalo Camarillo |
2010-10-05
|
07 | Peter Saint-Andre | [Ballot comment] I would like to echo Ralph's comment: given that RFC 4120 does not have the concept of reserved names, this specification cannot legislate … [Ballot comment] I would like to echo Ralph's comment: given that RFC 4120 does not have the concept of reserved names, this specification cannot legislate the behavior of applications that currently conform to RFC 4120 but not this specification. Furthermore, it would be helpful to describe the recommended behavior of a client that supports reserved names when it interacts with an authentication service or ticket granting service that does not support reserved names; for example, does the client need to discard the ticket it receives? |
2010-10-05
|
07 | Peter Saint-Andre | [Ballot Position Update] New position, No Objection, has been recorded by Peter Saint-Andre |
2010-10-05
|
07 | Adrian Farrel | [Ballot Position Update] New position, No Objection, has been recorded by Adrian Farrel |
2010-10-05
|
07 | Dan Romascanu | [Ballot comment] 1. Please expand KDC at first occurence. 2. In the Security Considerations section: > It is possible to have name collision with well-known … [Ballot comment] 1. Please expand KDC at first occurence. 2. In the Security Considerations section: > It is possible to have name collision with well-known names because Kerberos as defined in [RFC4120] does not reserve names that have special meanings, consequently care MUST be taken to avoid accidental reuse of names. s/care MUST be taken to avoid accidental reuse of names/accidental reuse of names MUST be avoided/ |
2010-10-05
|
07 | Dan Romascanu | [Ballot Position Update] New position, No Objection, has been recorded by Dan Romascanu |
2010-10-05
|
07 | Sean Turner | [Ballot comment] 1) Sec 1: It's odd that there's a 2119 requirement in the intro (before the requirements terminology). Could this be reworked? 2) Sec … [Ballot comment] 1) Sec 1: It's odd that there's a 2119 requirement in the intro (before the requirements terminology). Could this be reworked? 2) Sec 1: r/is to remedy/remedies 3) Sec 1: It would be nice to have some text that indicates say which parts of 4120 you're updating. Section 6.1, 6.2, 7.5.7, and 7.5.8 right? Side note: Interesting that in 4120 Section 6.2 uses NT-TYPENAME while 7.5.8 uses the prefix KRB and underscores instead of dashes (KRB_NT_TYPENAME). Should KRB_NT_WELLKNOWN also be NT-WELLKNOWN? 4) Sec 3.1, 2nd para, 2nd sentence: r/must/MUST |
2010-10-05
|
07 | Sean Turner | [Ballot Position Update] New position, No Objection, has been recorded by Sean Turner |
2010-10-05
|
07 | Ralph Droms | [Ballot comment] Section 3.1: If a well-known principal name is used as the client principal name or the server principal name but not … [Ballot comment] Section 3.1: If a well-known principal name is used as the client principal name or the server principal name but not supported, the Authentication Service (AS) [RFC4120] and the application server MUST reject the authentication attempt. What does "not supported" mean here? How does this behavior compare with the behavior of currently deployed ASs; i.e., will an AS implemented before this document was written reject the authentication attempt? |
2010-10-05
|
07 | Ralph Droms | [Ballot Position Update] New position, No Objection, has been recorded by Ralph Droms |
2010-10-04
|
07 | Tim Polk | [Ballot Position Update] New position, Yes, has been recorded for Tim Polk |
2010-10-04
|
07 | Tim Polk | Ballot has been issued by Tim Polk |
2010-10-04
|
07 | Lars Eggert | [Ballot Position Update] New position, No Objection, has been recorded by Lars Eggert |
2010-10-04
|
07 | Lars Eggert | Created "Approve" ballot |
2010-10-03
|
07 | Tim Polk | State changed to IESG Evaluation from Waiting for AD Go-Ahead by Tim Polk |
2010-10-03
|
07 | Tim Polk | Placed on agenda for telechat - 2010-10-07 by Tim Polk |
2010-09-01
|
07 | Tim Polk | waiting for draft-ietf-krb-anon before initiating IESG evaluation. WG chairs determined that a second IETF Last Call is not needed - the changes are in -anon, … waiting for draft-ietf-krb-anon before initiating IESG evaluation. WG chairs determined that a second IETF Last Call is not needed - the changes are in -anon, which is getting a second Last Call |
2010-09-01
|
07 | Tim Polk | Note field has been cleared by Tim Polk |
2010-09-01
|
07 | Tim Polk | State changed to Waiting for AD Go-Ahead from Publication Requested by Tim Polk |
2010-08-30
|
07 | Tim Polk | State changed to Publication Requested from AD is watching by Tim Polk |
2010-08-16
|
07 | Cindy Morgan | State changed to AD is watching from Dead by Cindy Morgan |
2010-08-16
|
07 | (System) | This document has been resurrected. |
2009-02-13
|
07 | (System) | State Changes to Dead from AD is watching by system |
2009-02-13
|
07 | (System) | Document has expired |
2008-10-30
|
07 | Tim Polk | State Changes to AD is watching from Waiting for AD Go-Ahead by Tim Polk |
2008-10-30
|
07 | Tim Polk | New WG and IETF Last Calls are needed in light of significant changes in content. |
2008-08-12
|
07 | (System) | New version available: draft-ietf-krb-wg-naming-07.txt |
2008-07-27
|
06 | (System) | New version available: draft-ietf-krb-wg-naming-06.txt |
2008-07-27
|
05 | (System) | New version available: draft-ietf-krb-wg-naming-05.txt |
2008-03-28
|
07 | Samuel Weiler | Request for Last Call review by SECDIR Completed. Reviewer: Steve Hanna. |
2008-03-07
|
07 | (System) | State has been changed to Waiting for AD Go-Ahead from In Last Call by system |
2008-03-05
|
07 | Amanda Baber | IANA Last Call comments: Upon approval of this document, the IANA will create the following registry "Well Known Kerberos Names" located at http://www.iana.org/assignments/TBD Registration Policy: … IANA Last Call comments: Upon approval of this document, the IANA will create the following registry "Well Known Kerberos Names" located at http://www.iana.org/assignments/TBD Registration Policy: Specification Required Initial contents of this registry will be: Well Known Principal Names Reference -------------------------- -------------------- Well Known Realm Names Reference ---------------------- -------------------- We understand the above to be the only IANA Action for this document. |
2008-02-25
|
07 | Samuel Weiler | Request for Last Call review by SECDIR is assigned to Steve Hanna |
2008-02-25
|
07 | Samuel Weiler | Request for Last Call review by SECDIR is assigned to Steve Hanna |
2008-02-22
|
07 | Amy Vezza | Last call sent |
2008-02-22
|
07 | Amy Vezza | State Changes to In Last Call from Last Call Requested by Amy Vezza |
2008-02-22
|
07 | Tim Polk | State Changes to Last Call Requested from Publication Requested by Tim Polk |
2008-02-22
|
07 | Tim Polk | Last Call was requested by Tim Polk |
2008-02-22
|
07 | (System) | Ballot writeup text was added |
2008-02-22
|
07 | (System) | Last call text was added |
2008-02-22
|
07 | (System) | Ballot approval text was added |
2008-02-22
|
07 | Tim Polk | Intended Status has been changed to Proposed Standard from None |
2008-02-07
|
07 | Tim Polk | The Document Shepherd for this document is Jeffrey Hutzelman. |
2008-02-07
|
07 | Tim Polk | Draft Added by Tim Polk in state Publication Requested |
2007-10-24
|
04 | (System) | New version available: draft-ietf-krb-wg-naming-04.txt |
2007-03-07
|
03 | (System) | New version available: draft-ietf-krb-wg-naming-03.txt |
2007-03-05
|
02 | (System) | New version available: draft-ietf-krb-wg-naming-02.txt |
2006-10-11
|
01 | (System) | New version available: draft-ietf-krb-wg-naming-01.txt |
2006-06-12
|
00 | (System) | New version available: draft-ietf-krb-wg-naming-00.txt |