W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > January to April 1996

Digest Authentication topic closed

From: Larry Masinter <masinter@parc.xerox.com>
Date: Thu, 22 Feb 1996 16:29:42 PST
To: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
Message-Id: <96Feb22.162946pst.2733@golden.parc.xerox.com>
I will mark the current status of Digest Authentication now as:

> The person who originally volunteered to revise the draft (Jeff
> Hostetler) has indicated that he is not available to work on it.
> There is not yet a new volunteer.

I don't think we need to repeat the discussion we've had before about
the utility of Digest Authentication (even though it's been raised
again with new participants). However, we do need someone to respond
to the points that were raised and agreed on, and until we have a
document editor, the work won't move.

I thus declare the topic of "Digest Authentication" to be closed on
the working group list until someone volunteers to take over as
document editor, and makes the edits that were last called for.

>  * Adding an algorithm parameter.
>  * Describe in detail construction of nonces.
> 	Here there are a number of tricks already in use which ensure that
> 	a nonce is only valid for requests comming from a single TCP/IP
> 	address.
>  * Fix dependence on 'extension mechanism'.       
>  * Enhance 'security considerations' section to explain limitations.

If you wish to volunteer to be document editor, please contact me
directly, and explain your credentials that qualify you to take the
job.
Received on Thursday, 22 February 1996 16:32:19 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:31:46 EDT