- From: Larry Masinter <masinter@parc.xerox.com>
- Date: Thu, 22 Feb 1996 16:29:42 PST
- To: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
I will mark the current status of Digest Authentication now as: > The person who originally volunteered to revise the draft (Jeff > Hostetler) has indicated that he is not available to work on it. > There is not yet a new volunteer. I don't think we need to repeat the discussion we've had before about the utility of Digest Authentication (even though it's been raised again with new participants). However, we do need someone to respond to the points that were raised and agreed on, and until we have a document editor, the work won't move. I thus declare the topic of "Digest Authentication" to be closed on the working group list until someone volunteers to take over as document editor, and makes the edits that were last called for. > * Adding an algorithm parameter. > * Describe in detail construction of nonces. > Here there are a number of tricks already in use which ensure that > a nonce is only valid for requests comming from a single TCP/IP > address. > * Fix dependence on 'extension mechanism'. > * Enhance 'security considerations' section to explain limitations. If you wish to volunteer to be document editor, please contact me directly, and explain your credentials that qualify you to take the job.
Received on Thursday, 22 February 1996 16:32:19 UTC