[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Comments on X.509 SASL Authentication Mechanism

To: "ietf-ldapext@netscape.com " <ietf-ldapext@netscape.com>
Subject: RE: Comments on X.509 SASL Authentication Mechanism
From: "Curtin, William" <curtinw@ftm.disa.mil>
Date: Wed, 29 Apr 1998 11:13:00 -0400
Cc: "S.Kille@isode.com " <S.Kille@isode.com>
Delivered-to: ldapext-archive@critical-angle.com
Resent-date: Wed, 29 Apr 1998 08:23:22 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"Seay1.0.vv2.XNqHr"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

          If the 1997 reference is used for 509 does the draft then 
          need to include the ASN.1 for time that Sean gave (given 
          that it is covered in a defect to 1997 509)?
          
          Also while we're on the topic of references, should there be 
          a reference to the DSS algorithm?
          
          bill


______________________________ Reply Separator
_________________________________
Subject: RE: Comments on X.509 SASL Authentication Mechanism
Author:  Alexis Bor [SMTP:alexis.bor@DirectoryWorks.com]  at DISAHUB
Date:    4/29/98 10:16 AM


Actually,
Why not use the 1997 references.
          
-     ITU-T Recommendation X.509 (1997) | ISO/IEC 9594-8:1997, 
Information technology - Open Systems Interconnection -The Directory: 
Authentication framework.
          
-     ITU-T Recommendation X.511 (1997) | ISO/IEC 9594-3:1997, 
Information technology - Open Systems Interconnection -The Directory: 
Abstract service definition.
          
-- Alexis
          
Alexis Bor
Directory Works, Inc.
16312 194th Avenue NE
Woodinville, WA  98072
425-788-7647
425-844-2375 (FAX)
alexis.bor@directoryworks.com
http://www.directoryworks.com
          
          
> -----Original Message-----
> From: Curtin, William [mailto:curtinw@ftm.disa.mil] 
> Sent: Wednesday, April 29, 1998 6:37 AM
> To: ietf-ldapext@netscape.com
> Cc: S.Kille@isode.com ; IETF LDAP Extensions WG
> Subject: RE: Comments on X.509 SASL Authentication Mechanism 
>
>
> Steve,
>
> Some picky points:
>
>
> 1. The draft seems to describe procedures for "X509-CLIENT" 
> but does not
> address
> "X509-SERVER" or "X509-BOTH" (server authentication of client 
> or two-way
> authentication) was this an oversight? 
>
> 2. Note that you have X.509 listed twice in the bibliography 
> section. Here
> are
> the full references for 1993 X.509 and X.511. 
>
> ITU-T Recommendation X.511 (1993) | ISO/IEC 9594-3:1995, Information 
> technology
> -- Open Systems Interconnection -- The Directory: Abstract service 
> definition.
>
>
> ITU-T Recommendation X.509 (1993) | ISO/IEC 9594-8:1995, Information 
> technology
> -- Open Systems Interconnection -- The Directory: 
> Authentication framework.
>
>                                         `bill 
>

Prev by Date: RE: Comments on X.509 SASL Authentication Mechanism
Next by Date: Re: LDAP ACLs
Index(es):
- Chronological
- Thread