Re: [websec] [saag] HTTP authentication: the next generation from Ben Laurie on 2010-12-13 (ietf-http-wg@w3.org from October to December 2010)

From: Ben Laurie <benl@google.com>
Date: Mon, 13 Dec 2010 12:08:43 +0000
To: Yoav Nir <ynir@checkpoint.com>
Cc: Paul Hoffman <paul.hoffman@vpnc.org>, websec <websec@ietf.org>, Peter Saint-Andre <stpeter@stpeter.im>, "apps-discuss@ietf.org" <apps-discuss@ietf.org>, "pgut001@cs.auckland.ac.nz" <pgut001@cs.auckland.ac.nz>, "kitten@ietf.org" <kitten@ietf.org>, Yaron Sheffer <yaronf.ietf@gmail.com>, "http-auth@ietf.org" <http-auth@ietf.org>, "saag@ietf.org" <saag@ietf.org>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>, "ietf-http-wg@w3.org Group" <ietf-http-wg@w3.org>
Message-ID: <AANLkTikwzY7XWz8qKcAkUdvE6OiRmQ1KqsmQngE_F5PV@mail.gmail.com>

On 11 December 2010 23:10, Yoav Nir <ynir@checkpoint.com> wrote:
> TLS client certificates work, but as we've learned both with the web and with IPsec clients, people would much rather not use them. A few IETFs ago (Chicago?), a bunch of us tried to push the idea of TLS with EAP authentication.

I think what we've learnt is that we need to provide good UI and
portability if we want people to use them.

Received on Monday, 13 December 2010 12:09:14 UTC