[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Naming of ACLs, Replication etc

To: Steve Kille <S.Kille@isode.com>
Subject: RE: Naming of ACLs, Replication etc
From: Bruce Greenblatt <Bgreenblatt@rsa.com>
Date: Wed, 13 May 1998 19:06:51 -0700
Cc: Tim Howes <howes@netscape.com>, ietf-ldapext@netscape.com
Delivered-to: ldapext-archive@critical-angle.com
Resent-date: Wed, 13 May 1998 19:06:27 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"EI1jS.0.2j3.U6bMr"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Steve,

I think that you're reading more into the charter than is there. It
definitely doesn't say that LDAP is THE Internet Directory
Service.  I'd think that this claim to fame is still undecided, and that
there are contenders other than LDAP and X.500.  While
I'm sure that the charter isn't perfect, I think that it comes pretty close
to saying what tasks the group has in front of it.  I don't
know that the Charter needs to state what LDAP is intended to be.  All that
this group is doing is attempting to define some
extensions to the LDAP v3 protocol to meet some reasonable well defined
goals.  World domination is definitely NOT one
of the goals of the LDAP Extensions working group.  I'm thinking about
sponsoring a world-dom bof in Chicago though, if anyone wants to join me.

Bruce

> -----Original Message-----
> From:	Steve Kille [SMTP:S.Kille@isode.com]
> Sent:	Monday, May 11, 1998 12:28 PM
> To:	Bruce Greenblatt
> Cc:	Tim Howes; ietf-ldapext@netscape.com
> Subject:	Re: Naming of ACLs, Replication etc 
> 
> Bruce,
> 
> It was sloppy of me not to review the charter prior to sending my
> message.   Let me comment on your extracts from the charter:
> 
>  >"LDAPv3
>  >defines an information model and an authentication model, allowing
>  >information to be protected via access control. 
> 
> Apart from a minor quibble that LDAPv3 uses the X.500 information
> model (and thus the definition is by reference), this is basically
> correct.
> 
>  >But LDAPv3 defines no
>  >standard representation or semantic for this access control information.
> 
> OK
> 
>  >This work item will be to define such a standard access control model.
> 
> I would suggest changing this to "model or models".   
> 
>  >about access control.  The general overview from the charter says: "LDAP
>  >version 3 has laid a solid foundation for directory access on the
> Internet.
> 
> Agreed.
> 
>  >More work is needed to provide a full Internet directory service. 
> 
> Agreed.   
> 
> There is an implicit statement here that this WG will undertake the
> work to define this directory service.   
> 
> 
>  >The LDAP
>  >Extension working group will define and standardize extensions to the
> LDAP
>  >version 3 protocol and extensions to the use of LDAP on the Internet."
> 
> There are two more implicit assumptions here:
> 
> 1) The Internet Directory Service should be called LDAP.
> 
> 2) The Internet Directory Service should be built by use of extensions
> to LDAP.
> 
> I disagree strongly with both of these assumptions.   
> 
> The charter needs to state clearly what LDAP is intended to be, and
> the relationship between LDAP and the "full Internet directory service".  
> 
> I think that if this is stated clearly, that the answer to my original
> questions will "come out in the wash".  
> 
> 
> Steve

Prev by Date: draft-byrne-ldap-alias-00.txt
Next by Date: JNDI/LDAP Beta3; Internet-Draft for Java objects
Index(es):
- Chronological
- Thread