Skip to main content

Authentication Context Certificate Extension
draft-santesson-auth-context-extension-12

Revision differences

Document history

Date Rev. By Action
2016-03-07
12 (System) RFC Editor state changed to AUTH48-DONE from AUTH48
2016-02-03
12 (System) RFC Editor state changed to AUTH48 from RFC-EDITOR
2016-02-03
12 (System) RFC Editor state changed to RFC-EDITOR from EDIT
2015-12-10
12 (System) RFC Editor state changed to EDIT
2015-12-10
12 (System) IESG state changed to RFC Ed Queue from Approved-announcement sent
2015-12-10
12 (System) Announcement was received by RFC Editor
2015-12-07
12 (System) IANA Action state changed to No IC from In Progress
2015-12-07
12 (System) IANA Action state changed to In Progress
2015-12-07
12 Cindy Morgan IESG state changed to Approved-announcement sent from Approved-announcement to be sent::Point Raised - writeup needed
2015-12-07
12 Cindy Morgan IESG has approved the document
2015-12-07
12 Cindy Morgan Closed "Approve" ballot
2015-12-07
12 Cindy Morgan Ballot approval text was generated
2015-11-30
12 Jouni Korhonen Request for Last Call review by GENART Completed: Ready. Reviewer: Jouni Korhonen.
2015-11-29
12 Gunter Van de Velde Request for Telechat review by OPSDIR Completed. Reviewer: Eric Vyncke.
2015-11-29
12 Gunter Van de Velde Request for Telechat review by OPSDIR is assigned to Eric Vyncke
2015-11-29
12 Gunter Van de Velde Request for Telechat review by OPSDIR is assigned to Eric Vyncke
2015-11-29
12 Gunter Van de Velde Closed request for Telechat review by OPSDIR with state 'Withdrawn'
2015-11-26
12 Stefan Santesson IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed
2015-11-26
12 Stefan Santesson New version available: draft-santesson-auth-context-extension-12.txt
2015-11-19
11 Gunter Van de Velde Request for Telechat review by OPSDIR is assigned to Eric Vyncke
2015-11-19
11 Gunter Van de Velde Request for Telechat review by OPSDIR is assigned to Eric Vyncke
2015-11-19
11 Cindy Morgan IESG state changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation
2015-11-19
11 Benoît Claise [Ballot Position Update] New position, No Objection, has been recorded for Benoit Claise
2015-11-19
11 Jari Arkko [Ballot comment]
Authors should probably note a couple of minor editorial issues that were raised by Jouni Korhonen in his Gen-ART review.
2015-11-19
11 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko
2015-11-18
11 Joel Jaeggli [Ballot comment]
Eric Vynke performed the opsdir review.
2015-11-18
11 Joel Jaeggli [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli
2015-11-18
11 Barry Leiba
[Ballot comment]
-- Section 3.1.1 --

  The  element may hold any number of child elements
  of type any (processContents="lax"), providing additional information
  …
[Ballot comment]
-- Section 3.1.1 --

  The  element may hold any number of child elements
  of type any (processContents="lax"), providing additional information
  according to local conventions. Any such elements MAY be ignored if
  not understood.

What else can be done with such elements that are not understood, other than to ignore them?  That is, why is it "MAY be", rather than, say, "are"?  (The same question applies to Section 3.1.2.)

-- Section 3.1.2 --

            String representations of object identifiers (OID) in the
            Ref attribute MUST be represented by a sequence of integers
            separated by a period. E.g. "2.5.4.32". This string MUST NOT
            contain any white-space or line breaks.

That's a very limited MUST not, and it doesn't say what other characters can appear in the string.  Is it actually the case that "This string contains only numerals (ASCII 0x30 to 0x39) and periods (ASCII 0x2E), and MUST NOT contain any other characters." ?  If so, wouldn't it be better to say it that way?
2015-11-18
11 Barry Leiba [Ballot Position Update] New position, No Objection, has been recorded for Barry Leiba
2015-11-18
11 Cindy Morgan Changed consensus to Yes from Unknown
2015-11-18
11 Alvaro Retana [Ballot Position Update] New position, No Objection, has been recorded for Alvaro Retana
2015-11-18
11 Ben Campbell [Ballot Position Update] New position, No Objection, has been recorded for Ben Campbell
2015-11-18
11 Brian Haberman
[Ballot comment]
I was notified that Kathleen has the status issue well in hand, so I am removing my DISCUSS on that point.

I tend …
[Ballot comment]
I was notified that Kathleen has the status issue well in hand, so I am removing my DISCUSS on that point.

I tend to agree with Stephen's point about the usefulness of this as a standard (if it is supposed to be ST).
2015-11-18
11 Brian Haberman [Ballot Position Update] Position for Brian Haberman has been changed to No Objection from Discuss
2015-11-18
11 Brian Haberman
[Ballot discuss]
Is this document intended to be Standards Track or Informational?  The ballot says ST, but the document header says "Intended Status: Informational". The …
[Ballot discuss]
Is this document intended to be Standards Track or Informational?  The ballot says ST, but the document header says "Intended Status: Informational". The IETF Last Call message indicates Standards Track, so I think the header is wrong.
2015-11-18
11 Brian Haberman [Ballot comment]
I tend to agree with Stephen's point about the usefulness of this as a standard (if it is supposed to be ST).
2015-11-18
11 Brian Haberman [Ballot Position Update] New position, Discuss, has been recorded for Brian Haberman
2015-11-17
11 Terry Manderson [Ballot Position Update] New position, No Objection, has been recorded for Terry Manderson
2015-11-17
11 Deborah Brungard [Ballot Position Update] New position, No Objection, has been recorded for Deborah Brungard
2015-11-17
11 Kathleen Moriarty [Ballot comment]
The following comments from Russ Housley on the IETF list need to be resolved:

https://mailarchive.ietf.org/arch/msg/ietf/XZqjGmjPokiMdzG2xI3G60Av56w

Russ did compile the ASN.1 modules.
2015-11-17
11 Kathleen Moriarty Ballot comment text updated for Kathleen Moriarty
2015-11-17
11 Alissa Cooper [Ballot Position Update] New position, No Objection, has been recorded for Alissa Cooper
2015-11-16
11 Stephen Farrell
[Ballot comment]

- This is not the kind of thing that is particularly useful,
as (IMO) it's over generalised and will not be supported
widely. …
[Ballot comment]

- This is not the kind of thing that is particularly useful,
as (IMO) it's over generalised and will not be supported
widely. I think you'd have been better off simply saying what
you have done in the Swedish eID system. (Mind you, I also
think that's over complex too;-) However, I've no objection to
this as I guess it's a little useful to your eID project, and
not harmful elsewhere. (It'd be better though if you said that
you didn't claim that this is highly scalable etc.)

- I think this'd be better if you said the extension MUST be
critical. That'd eliminate the (real, but not huge) concern
that the code for all this (being mostly unused) could be
harmful. Not a huge deal though.

- "A unique reference to the authentication instant" Huh?
What's that mean?

- "The extension defined here provides better scalability..."
I don't buy that fwiw. One needs the code to intepret all
these (overly) abstract data structures.

- p8, "This string MUST NOT contain any white-space or line
breaks." I have no idea why that MUST NOT is needed given how
much other fluff can be in XML string encodings.

- p9, "Any such elements MAY be ignored if not understood."
Huh? If I don't understand what else can I do but igore?

- I think it'd be useful to say that implementations really
ought not decode then re-encode all this stuff as there are
too many way to get that wrong. (If you tell me that's
considered obvious nowadays, I'm fine with that.)

- The secdir review [1] makes some points similar to those
above. I think that deserves a response, even if I don't
consider those points require a DISCUSS ballot.

  [1] https://www.ietf.org/mail-archive/web/secdir/current/msg06124.html
2015-11-16
11 Stephen Farrell [Ballot Position Update] New position, No Objection, has been recorded for Stephen Farrell
2015-11-16
11 Spencer Dawkins
[Ballot comment]
Just as a nit, this document uses "certificate" with no qualification. Most of the documents in the references say "X.509 certificates". Is "certificate" …
[Ballot comment]
Just as a nit, this document uses "certificate" with no qualification. Most of the documents in the references say "X.509 certificates". Is "certificate" sufficiently disambiguated with no qualifiers?
2015-11-16
11 Spencer Dawkins [Ballot Position Update] New position, No Objection, has been recorded for Spencer Dawkins
2015-11-16
11 Kathleen Moriarty IESG state changed to IESG Evaluation from Waiting for Writeup
2015-11-12
11 Jean Mahoney Request for Last Call review by GENART is assigned to Jouni Korhonen
2015-11-12
11 Jean Mahoney Request for Last Call review by GENART is assigned to Jouni Korhonen
2015-11-10
11 Gunter Van de Velde Request for Last Call review by OPSDIR Completed: Has Issues. Reviewer: Eric Vyncke.
2015-10-29
11 (System) IANA Review state changed to IANA OK - No Actions Needed from Version Changed - Review Needed
2015-10-27
11 Kathleen Moriarty Ballot has been issued
2015-10-27
11 Kathleen Moriarty [Ballot Position Update] New position, Yes, has been recorded for Kathleen Moriarty
2015-10-27
11 Kathleen Moriarty Created "Approve" ballot
2015-10-27
11 Kathleen Moriarty Ballot writeup was changed
2015-10-27
11 Kathleen Moriarty Notification list changed to stefan@aaa-sec.com, leifj@sunet.se
2015-10-27
11 Cindy Morgan New version available: draft-santesson-auth-context-extension-11.txt
2015-10-27
10 (System) IESG state changed to Waiting for Writeup from In Last Call
2015-10-22
10 Tero Kivinen Request for Last Call review by SECDIR Completed: Has Issues. Reviewer: Matthew Miller.
2015-10-20
10 Kathleen Moriarty Placed on agenda for telechat - 2015-11-19
2015-10-15
10 Jouni Korhonen Request for Last Call review by GENART Completed: Ready with Nits. Reviewer: Jouni Korhonen.
2015-10-14
10 (System) Notify list changed from sts@aaa-sec.com, leifj@sunet.se to (None)
2015-10-12
09 Leif Johansson
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated …
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated 24 February 2012.

(1) This is an individual submission as a proposed standards as it
has seen reasonably wide implementation and deployment although
currently limited to a single market.

(2) The IESG approval announcement includes a Document Announcement
Write-Up. Please provide such a Document Announcement Write-Up. Recent
examples can be found in the "Action" announcements for approved
documents. The approval announcement contains the following sections:

Technical Summary

  This document defines an extension to certificates according to
  [RFC5280]. The extension defined in this document holds data about
  how the certificate subject was authenticated by the Certification
  Authority who issued the certificate where this extension appears.

  This document also defines one data structure for inclusion in this
  extension that designed to hold information when the subject is
  authenticated using a SAML assertion [SAML].

Working Group Summary

  The PKIX working group is closed.

Document Quality

  The document has been reviewed by the implementors of the Swedish
  eID (goverment to citizen identity services) signing service. There
  are currently at least 3 fully interoperable implementations
  suggesting the specification has been well reviewed.

  An ASN.1 Syntax verification is requested by the document shepherd.

Personnel

  Shepherd: Leif Johansson
  Responsible Area Director: Kathleen Moriarty
 

(3) The shepherd reviewed the draft, providing recommendations that have
been address in the version used for IETF last call.  References and IDnits
fixes were recommended.  Content and security considerations were reviewed.
An ASN.1 syntax check was not preformed, but was requested by the shepherd.

(4) Does the document Shepherd have any concerns about the depth or
breadth of the reviews that have been performed?  No.

(5) Do portions of the document need review?

A ASN.1 syntax review is requested.

(6) Describe any specific concerns or issues that the Document Shepherd
has with this document that the Responsible Area Director and/or the
IESG should be aware of?

no

(7) The shepherd has confirmed with the author that there are no IPR
issues and the draft boilerplate claims full conformance with BCP 78
and BCP 79.

(8) The shepherd has confirmed with the author that there are no IPR
issues.

(9) The document has been reviewed by the implementors of the Swedish
eID (goverment to citizen identity services) signing service. There
are currently at least 3 fully interoperable implementations
suggesting the specification has been well reviewed.

(10) Has anyone threatened an appeal or otherwise indicated extreme
discontent?  No.

(11) IDnits have been addressed from the shepherd review against
version -07.

(12) Describe how the document meets any required formal review
criteria, such as the MIB Doctor, media type, and URI type reviews.

ASN.1 syntax review is requested.

(13) Have all references within this document been identified as
either normative or informative? Yes.

(14) Are there normative references to documents that are not ready for
advancement or are otherwise in an unclear state? If such normative
references exist, what is the plan for their completion?  No.

(15) Are there downward normative references references (see RFC 3967)?
If so, list these downward references to support the Area Director in
the Last Call procedure.  None.

(16) Will publication of this document change the status of any existing
RFCs? No.

(17) Describe the Document Shepherd's review of the IANA considerations
section.  There are no IANA considerations.

(18) There are no IANA considerations.

(19) IDnits were verified and references have been updated from the -07 draft.

2015-10-10
09 Stefan Santesson IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed
2015-10-10
10 Stefan Santesson New version available: draft-santesson-auth-context-extension-10.txt
2015-10-09
09 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Eric Vyncke
2015-10-09
09 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Eric Vyncke
2015-10-01
09 Jean Mahoney Request for Last Call review by GENART is assigned to Jouni Korhonen
2015-10-01
09 Jean Mahoney Request for Last Call review by GENART is assigned to Jouni Korhonen
2015-10-01
09 (System) IANA Review state changed to IANA OK - No Actions Needed from IANA - Review Needed
2015-10-01
09 Amanda Baber
(Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs:

IANA has reviewed draft-santesson-auth-context-extension-09, which is currently in Last Call, and has the following comments:

We understand that this …
(Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs:

IANA has reviewed draft-santesson-auth-context-extension-09, which is currently in Last Call, and has the following comments:

We understand that this document doesn't require any IANA actions.

While it's often helpful for a document's IANA Considerations section to remain in place upon publication even if there are no actions, if the authors strongly prefer to remove it, IANA does not object.

If this assessment is not accurate, please respond as soon as possible.
2015-10-01
09 Tero Kivinen Request for Last Call review by SECDIR is assigned to Matthew Miller
2015-10-01
09 Tero Kivinen Request for Last Call review by SECDIR is assigned to Matthew Miller
2015-09-29
09 Amy Vezza IANA Review state changed to IANA - Review Needed
2015-09-29
09 Amy Vezza
The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
Reply-To: ietf@ietf.org
Sender:
Subject: Last Call:  (Authentication Context Certificate Extension) to Proposed …
The following Last Call announcement was sent out:

From: The IESG
To: IETF-Announce
Reply-To: ietf@ietf.org
Sender:
Subject: Last Call:  (Authentication Context Certificate Extension) to Proposed Standard


The IESG has received a request from an individual submitter to consider
the following document:
- 'Authentication Context Certificate Extension'
  as Proposed Standard

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
ietf@ietf.org mailing lists by 2015-10-27. Exceptionally, comments may be
sent to iesg@ietf.org instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.

Abstract


  This document defines an extension to certificates according to
  [RFC5280]. The extension defined in this document holds data about
  how the certificate subject was authenticated by the Certification
  Authority that issued the certificate in which this extension appears

  This document also defines one data structure for inclusion in this
  Extension. The data structure is designed to hold information when
  the subject is authenticated using a SAML assertion [SAML].




The file can be obtained via
https://datatracker.ietf.org/doc/draft-santesson-auth-context-extension/

IESG discussion can be tracked via
https://datatracker.ietf.org/doc/draft-santesson-auth-context-extension/ballot/


No IPR declarations have been submitted directly on this I-D.

Note: The editorial comments in the shepherd report have been addressed.  These will be removed/updated in a future version of the shepherd report, but I didn't want to hold up processing of this draft any further.
2015-09-29
09 Amy Vezza IESG state changed to In Last Call from Last Call Requested
2015-09-29
09 Kathleen Moriarty Last call was requested
2015-09-29
09 Kathleen Moriarty Last call announcement was changed
2015-09-29
09 Kathleen Moriarty Last call announcement was generated
2015-09-29
09 Kathleen Moriarty Last call was requested
2015-09-29
09 Kathleen Moriarty Last call announcement was generated
2015-09-29
09 Kathleen Moriarty Ballot approval text was generated
2015-09-29
09 Kathleen Moriarty Ballot writeup was generated
2015-09-29
09 Kathleen Moriarty IESG state changed to Last Call Requested from Dead
2015-09-28
09 Leif Johansson
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated …
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated 24 February 2012.

(1) This is an individual submission as a proposed standards as it
has seen reasonably wide implementation and deployment although
currently limited to a single market.

(2) The IESG approval announcement includes a Document Announcement
Write-Up. Please provide such a Document Announcement Write-Up. Recent
examples can be found in the "Action" announcements for approved
documents. The approval announcement contains the following sections:

Technical Summary

  This document defines an extension to certificates according to
  [RFC5280]. The extension defined in this document holds data about
  how the certificate subject was authenticated by the Certification
  Authority who issued the certificate where this extension appears.

  This document also defines one data structure for inclusion in this
  extension that designed to hold information when the subject is
  authenticated using a SAML assertion [SAML].

Working Group Summary

  The PKIX working group is closed.

Document Quality

  The document has been reviewed by the implementors of the Swedish
  eID (goverment to citizen identity services) signing service. There
  are currently at least 3 fully interoperable implementations
  suggesting the specification has been well reviewed.

  An ASN.1 Syntax verification is requested by the document shepherd.

Personnel

  Shepherd: Leif Johansson
  Responsible Area Director: Kathleen Moriarty
 

(3) The shepherd reviewed the draft, providing recommendations that have
been address in the version used for IETF last call.  References and IDnits
fixes were recommended.  Content and security considerations were reviewed.
An ASN.1 syntax check was not preformed, but was requested by the shepherd.

(4) Does the document Shepherd have any concerns about the depth or
breadth of the reviews that have been performed?  No.

(5) Do portions of the document need review?

An ASN.1 syntax review is requested.

(6) Describe any specific concerns or issues that the Document Shepherd
has with this document that the Responsible Area Director and/or the
IESG should be aware of?

  The document is short and relatively straightforward. The author tends
  to overuse the words "this" and "that" which makes it a little hard to
  follow some of the text but not critically so.

  The author suggests removal of section 1.2 but I think that if made
  a bit shorter and cleaned up it serves as a good motivation for the
  choices in the spec.

(7) The shepherd has confirmed with the author that there are no IPR
issues and the draft boilerplate claims full conformance with BCP 78
and BCP 79.

(8) The shepherd has confirmed with the author that there are no IPR
issues.

(9) The document has been reviewed by the implementors of the Swedish
eID (goverment to citizen identity services) signing service. There
are currently at least 3 fully interoperable implementations
suggesting the specification has been well reviewed.

(10) Has anyone threatened an appeal or otherwise indicated extreme
discontent?  No.

(11) IDnits have been addressed from the shepherd review against
version -07.

(12) Describe how the document meets any required formal review
criteria, such as the MIB Doctor, media type, and URI type reviews.

ASN.1 syntax review is requested.

(13) Have all references within this document been identified as
either normative or informative? Yes.

(14) Are there normative references to documents that are not ready for
advancement or are otherwise in an unclear state? If such normative
references exist, what is the plan for their completion?  No.

(15) Are there downward normative references references (see RFC 3967)?
If so, list these downward references to support the Area Director in
the Last Call procedure.  None.

(16) Will publication of this document change the status of any existing
RFCs? No.

(17) Describe the Document Shepherd's review of the IANA considerations
section.  There are no IANA considerations.

(18) There are no IANA considerations.

(19) IDnits were verified and references have been updated from the -07 draft.


--- Additional readability/grammar review

Introduction:

- s/understand information/obtain information/
- s/This addresses some needs that may arise/The motivation for this work is .../ (rewrite to match)
- s/in exchange of a certificate/in exchange for a certificate/ (but consider rewriting to split up the long sentenc)
- s/traced back to that subjects SAML assertion, both with regard to
  identity attributes and with regard to level of assurance with which
  the subject was authenticated by its Identity Provider./uniquely linked to information provided in the original SAML assertion - eg attriutes and/or level of assurance indicators/

- s/A reason to issue such certificate.../Such certificates are sometimes issued in order to provide the user with a means to create an electronic signature that ties the user to the SAML subject, its attributes and level of assurance indicators/

s/If that signature certificate needs to /If such a certificate needs to.../
- s/This is only possible today/Today this is only possible/
- s/This is however hard to scale and maintain using a/However, this approach does not scale to a/

2. Authentication Context Extension Syntax

Suggest drop first paragraph as redundant

s/is used mainly to allow/is mainly used to allow/

Look for "name form" and suggest replacing it with nameform since it is a SAML term of art - but I suggest getting outside review (ask Scott) about this.
2015-08-17
09 Stefan Santesson New version available: draft-santesson-auth-context-extension-09.txt
2015-08-17
08 (System) Document has expired
2015-08-17
08 (System) IESG state changed to Dead from AD is watching
2015-03-13
08 Kathleen Moriarty IESG state changed to AD is watching from Dead
2015-02-13
08 Stefan Santesson New version available: draft-santesson-auth-context-extension-08.txt
2015-02-12
07 (System) Document has expired
2015-02-12
07 (System) IESG state changed to Dead from AD is watching
2014-12-10
07 Kathleen Moriarty IESG process started in state AD is watching
2014-12-10
07 Kathleen Moriarty
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated …
As required by RFC 4858, this is the current template for the Document
Shepherd Write-Up.

Changes are expected over time. This version is dated 24 February 2012.

(1) This is an individual submission as a proposed standards as it
has seen reasonably wide implementation and deployment although
currently limited to a single market.

(2) The IESG approval announcement includes a Document Announcement
Write-Up. Please provide such a Document Announcement Write-Up. Recent
examples can be found in the "Action" announcements for approved
documents. The approval announcement contains the following sections:

Technical Summary

  This document defines an extension to certificates according to
  [RFC5280]. The extension defined in this document holds data about
  how the certificate subject was authenticated by the Certification
  Authority who issued the certificate where this extension appears.

  This document also defines one data structure for inclusion in this
  extension that designed to hold information when the subject is
  authenticated using a SAML assertion [SAML].

Working Group Summary

  The PKIX working group is closed.

Document Quality

  The document has been reviewed by the implementors of the Swedish
  eID (goverment to citizen identity services) signing service. There
  are currently at least 3 fully interoperable implementations
  suggesting the specification has been well reviewed.

  An ASN.1 Syntax verification is requested by the document shepherd.

Personnel

  Shepherd: Leif Johansson
  Responsible Area Director: Kathleen Moriarty
 

(3) The shepherd reviewed the draft, providing recommendations that have
been address in the version used for IETF last call.  References and IDnits
fixes were recommended.  Content and security considerations were reviewed.
An ASN.1 syntax check was not preformed, but was requested by the shepherd.

(4) Does the document Shepherd have any concerns about the depth or
breadth of the reviews that have been performed?  No.

(5) Do portions of the document need review?

An ASN.1 syntax review is requested.

(6) Describe any specific concerns or issues that the Document Shepherd
has with this document that the Responsible Area Director and/or the
IESG should be aware of?

  The document is short and relatively straightforward. The author tends
  to overuse the words "this" and "that" which makes it a little hard to
  follow some of the text but not critically so.

  The author suggests removal of section 1.2 but I think that if made
  a bit shorter and cleaned up it serves as a good motivation for the
  choices in the spec.

(7) The shepherd has confirmed with the author that there are no IPR
issues and the draft boilerplate claims full conformance with BCP 78
and BCP 79.

(8) The shepherd has confirmed with the author that there are no IPR
issues.

(9) The document has been reviewed by the implementors of the Swedish
eID (goverment to citizen identity services) signing service. There
are currently at least 3 fully interoperable implementations
suggesting the specification has been well reviewed.

(10) Has anyone threatened an appeal or otherwise indicated extreme
discontent?  No.

(11) IDnits have been addressed from the shepherd review against
version -07.

(12) Describe how the document meets any required formal review
criteria, such as the MIB Doctor, media type, and URI type reviews.

ASN.1 syntax review is requested.

(13) Have all references within this document been identified as
either normative or informative? Yes.

(14) Are there normative references to documents that are not ready for
advancement or are otherwise in an unclear state? If such normative
references exist, what is the plan for their completion?  No.

(15) Are there downward normative references references (see RFC 3967)?
If so, list these downward references to support the Area Director in
the Last Call procedure.  None.

(16) Will publication of this document change the status of any existing
RFCs? No.

(17) Describe the Document Shepherd's review of the IANA considerations
section.  There are no IANA considerations.

(18) There are no IANA considerations.

(19) IDnits were verified and references have been updated from the -07 draft.
2014-12-10
07 Kathleen Moriarty IETF WG state changed to Submitted to IESG for Publication
2014-12-10
07 Kathleen Moriarty Intended Status changed to Proposed Standard from None
2014-12-10
07 Kathleen Moriarty Stream changed to IETF from None
2014-12-10
07 Kathleen Moriarty Notification list changed to "Leif Johansson" <leifj@sunet.se>
2014-12-10
07 Kathleen Moriarty Document shepherd changed to Leif Johansson
2014-08-11
07 Stefan Santesson New version available: draft-santesson-auth-context-extension-07.txt
2014-05-05
06 Stefan Santesson New version available: draft-santesson-auth-context-extension-06.txt
2013-09-23
05 Stefan Santesson New version available: draft-santesson-auth-context-extension-05.txt
2013-03-11
04 Stefan Santesson New version available: draft-santesson-auth-context-extension-04.txt
2013-02-15
03 Stefan Santesson New version available: draft-santesson-auth-context-extension-03.txt
2013-02-12
02 Stefan Santesson New version available: draft-santesson-auth-context-extension-02.txt
2013-02-12
01 Stefan Santesson New version available: draft-santesson-auth-context-extension-01.txt
2013-02-12
00 Stefan Santesson New version available: draft-santesson-auth-context-extension-00.txt