[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Proposed Enroll Charter

To: iesg@ietf.org
Subject: Proposed Enroll Charter
From: Russ Housley <housley@vigilsec.com>
Date: Wed, 24 Sep 2003 16:35:48 -0400

At the meeting in Vienna, I told the IESG that I wanted to start this working group. Things have been going slowly, but I think it is ready for the "laugh test."

Russ

= = = = = = = = =

Chairs:	Eric Rescorla
 		Paul Hoffman

Security Advisor:
		Don Eastlake

There are many cases where a service consumer needs to obtain credential
information from a service provider and provide for some type of
information for validation of identity.  This working group will look at
some of the cases dealing with the use of cryptographic algorithms for
providing this information.

When doing enrollment of a service consumer against a service provider,
three pieces of information need to be provided or created in order to
support authentication of the service consumer to the service provider
(and visa versa) and to allow for additional security services to be
provided any information exchanged.  These pieces of data are:

1.	The  "entity label" for the service consumer,
2.	A piece of keying information to be used
3.	A set of permissions for operations for the service consumer.

Each of these data items could be created by either the consumer or
provider at any point during the enrollment process.

This group will create a model to be used in describing enrollment
procedures and create a document for a framework how this is to be done.
The group will then produce three documents profiling the use of the
framework for the following cases:

1.	A shared secret key
2.	A bare asymmetric key
3.	A bound asymmetric key (e.g. an X.509 certificate).

As part of the validation of the framework, the group will examine how
other real world enrollment procedures could be profiled.  (An example
of this would be credit card usage.)

Goals and Milestones:

Sept 2003	First draft of model
Dec 2003	Last call on model document
Nov 2003	First draft of Framework document
April 2004	Last call on module document
March 2004	First draft of secret key profile
March 2004	First draft of bare asymmetric key profile
March 2004	First draft of bound asymmetric key profile
Aug 2004	Last call on secret key profile
Aug 2004	Last call on bare asymmetric key profile
Aug 2004	Last call on bound asymmetric key profile

Follow-Ups:
- Re: Proposed Enroll Charter
  - From: Harald Tveit Alvestrand <harald@alvestrand.no>

Prev by Date: Re: Volunteers sought for draft-mills-sntp-v4
Next by Date: Re: Volunteers sought for draft-mills-sntp-v4
Previous by thread: Discussion venues for the community
Next by thread: Re: Proposed Enroll Charter
Index(es):
- Date
- Thread