[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: what should ACLS be like?

To: Steve Bellovin <smb@research.att.com>, iab@ietf.org, iesg@ietf.org
Subject: Re: what should ACLS be like?
From: Russ Housley <housley@vigilsec.com>
Date: Sun, 09 Nov 2003 10:55:42 -0500
In-reply-to: <20031105144828.37A557B43@berkshire.research.att.com>

I am interested.

Some folks in the PKIX working group have looked at what form of identity ought to be included in a certificate so that the authenticated identity is the one needed to make an access control decision. I suggest that Steve Kent and Tim Polk (the chairs of PKIX) can represent these aspects of the problem.

Russ

At 09:48 AM 11/5/2003 -0500, Steve Bellovin wrote:

During last week's IESG call, while discussing webdav acl, Ned pointed
out that we had had tried three times to figure out what access control
lists should be like (imap, ldap, and now webdav).  It's probably
wise to take a broader look at the problem, possibly in the form of
a workshop.  Who on the I* is interested in the question?  Who else
in the IETF should we drag in?  Angelos Keromytis is a natural candidate,
plus probably some people from the pki world(s).  Others?

References:
- what should ACLS be like?
  - From: Steve Bellovin <smb@research.att.com>

Prev by Date: Jabber, AIM etc ID's
Next by Date: Re: [Solutions] Re: I-D ACTION:draft-zinin-early-review-00.txt
Previous by thread: what should ACLS be like?
Next by thread: Seoul IETF meeting dates fixed?
Index(es):
- Date
- Thread