W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2012

Re: draft-montenegro-httpbis-multilegged-auth-01

From: Alexey Melnikov <alexey.melnikov@isode.com>
Date: Tue, 10 Jul 2012 17:32:51 +0100
Message-ID: <4FFC5933.20702@isode.com>
To: Nico Williams <nico@cryptonector.com>
CC: HTTP Working Group <ietf-http-wg@w3.org>
On 08/07/2012 23:50, Nico Williams wrote:
> On Sun, Jul 8, 2012 at 1:56 PM, Alexey Melnikov
> <alexey.melnikov@isode.com>  wrote:
>> I think it is worth investing some WG time into this proposal, because several proposals (+ existing Kerberos) are already multilegged. Otherwise new schemes would need to reinvent this, for example using "sid" directive.
> I sought to generalize this with REST-GSS (which really uses SASL/GS2,
> not GSS directly).  Any comments?
You REST-GSS approach has some benefits over currently existing web 
authentication, so I am looking forward to discussing with the WG 
whether this should be the basis for all future web authentication 
mechanisms.
Received on Tuesday, 10 July 2012 16:33:11 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 10 July 2012 16:33:17 GMT