RPCSEC_GSS Version 2
Draft of message to be sent after approval:
From: The IESG <firstname.lastname@example.org> To: IETF-Announce <email@example.com> Cc: Internet Architecture Board <firstname.lastname@example.org>, RFC Editor <email@example.com>, nfsv4 mailing list <firstname.lastname@example.org>, nfsv4 chair <email@example.com> Subject: Protocol Action: 'RPCSEC_GSS Version 2' to Proposed Standard The IESG has approved the following document: - 'RPCSEC_GSS Version 2 ' <draft-ietf-nfsv4-rpcsec-gss-v2-07.txt> as a Proposed Standard This document is the product of the Network File System Version 4 Working Group. The IESG contact persons are Lars Eggert and Magnus Westerlund. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-nfsv4-rpcsec-gss-v2-07.txt
Technical Summary RPCSEC_GSS version 2 (RPCSEC_GSSv2) is the same as RPCSEC_GSS version 1 (RPCSEC_GSSv1) except that support for channel bindings has been added. The primary motivation for channel bindings is to securely take advantage of hardware assisted encryption that might exist at lower levels of the networking protocol stack, such as at the Internet Protocol (IP) layer in the form of IPsec. The secondary motivation is that even if lower levels are not any more efficient at encryption than the RPCSEC_GSS layer, if encryption is occurring at the lower level, it can be redundant at the RPCSEC_GSS level. Working Group Summary The working group development and review of this work was straightforward. The motivation is well understood and agreed upon and no major issues were identified or impeded progress during document review. Document Quality No existing implementations yet exist but given the author and reviewers are knowledgeable about more than one implementation of the current RPCSEC_GSS protocol, it is believed that the quality of this work is to be considered "high". Personnel Spencer Shepler (firstname.lastname@example.org) is the Document Shepherd. Lars Eggert (email@example.com) reviewed this document for the IESG.