Re: More feedback on draft-igoe-secsh-x509v3-01

To: Douglas Stebila <douglas%stebila.ca@localhost>, Joseph Galbraith <galb-list%vandyke.com@localhost>
Subject: Re: More feedback on draft-igoe-secsh-x509v3-01
From: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
Date: Wed, 31 Mar 2010 17:10:15 -0400

--On Wednesday, March 31, 2010 11:49:10 AM +1000 Douglas Stebila<douglas%stebila.ca@localhost> wrote:

 The publickey algorithms and encodings defined in this
 document SHOULD be accepted anyplace in the ssh2
 protocol suite where publickeys are used, including,
 but not limited to hostkeys, publickey authentication
 and hostbased authentication.


Yes, that does seem like a better way of doing it, as apparently we have
missed out on a number of existing areas.  However, I would like to be
able to list of all the existing areas where we believe it does apply in
order to give implementers an idea of what they need to change based on
current standards in order to adopt this (i.e., "including but not
limited to" type language).

Public key algorithms are a fairly straightforward abstraction in the sshprotocol, and we defined two of them up front. Any implementor who doesn'talready have this abstraction or something like it is beyond our help. Idon't think it's necessary or appropriate for every document that defines anew <foo> algorithm or method to enumerate all the places where the <foo>abstraction is used.

References:
- More feedback on draft-igoe-secsh-x509v3-01
  - From: Joseph Galbraith
- Re: More feedback on draft-igoe-secsh-x509v3-01
  - From: Douglas Stebila

Prev by Date: Re: More feedback on draft-igoe-secsh-x509v3-01
Next by Date: Still more feedback on draft-igoe-secsh-x509v3-01
Previous by Thread: Re: More feedback on draft-igoe-secsh-x509v3-01
Next by Thread: Still more feedback on draft-igoe-secsh-x509v3-01
Indexes:

Home | Main Index | Thread Index | Old Index