[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-bradner-pbk-frame-04

To: iesg@ietf.org
Subject: draft-bradner-pbk-frame-04
From: Ted Hardie <hardie@qualcomm.com>
Date: Tue, 29 Apr 2003 15:42:46 -0700

In the draft, the Introduction says:

When this mechanism is used with applications the PBK's public key
can be used in an identity for a web-cookie like function, but the
use is under the control of the node that initiates the connection
rather than under the control of the server.

I'm not sure what is meant here. HTTP cookies create pseudo state,
and a mechanism like this is pretty heavyweight for that use.
Note that the use of cookies for identification is rarely appropriate;
essentially only when there is an identity-based state and no authentication
or authorization is required.

In the Informative References, this seems to be a strange format:

([Syverson] is just a good starting point) as well as work that has
kinship to the pseudonyms in this in this work [Brands], [Chaum88],
[HIP], [SUCV].

Prev by Date: UPDATED: IESG Telechat for April 30, 2003
Next by Date: (no subject)
Previous by thread: Re: draft-bradner-pbk-frame-04
Next by thread: draft-bradner-pbk-frame-04
Index(es):
- Date
- Thread