ietf-mailsig
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Anonymous signed mail

2004-08-30 13:10:30
from [Richard Shockey] [Permanent Link]
None of this places any limits on what we're trying to do in the MASS group, but I'd prefer for us to try to view our authentication mechanisms as part of a larger picture that preserves computational or economic alternatives to sender identification. And I'd particularly like to try to build a consensus understanding that anonymity *can* be preserved in an era of spam control, rather than letting spam be used as an excuse for killing off anonymity. -- Nathaniel
I'm thinking out loud here so to sp[eak but I'm wondering if there is some parellel's here to the authentication and authorization problems some of us in the SIP community are struggling with and is an investigation of SAML based Identity technology for the MASS Problem Statement warranted. 

A variety of cryptographic materials could be stored in the signed assertion.


        Title           : Using SAML for SIP
        Author(s)       : H. Tschofenig, et al.
        Filename        : draft-tschofenig-sip-saml-00.txt
        Pages           : 33
        Date            : 2004-7-13

This document describes how to use the Security Assertion Markup
   Language (SAML) to offer trait-based authorization.  As such, it
   provides an alternative to existing authorization mechanisms for SIP.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-tschofenig-sip-saml-00.tx

##########
On a related subject ..I'm assuming that there is already general consensus that the use of TXT for storing public keys as described 

http://www.ietf.org/internet-drafts/draft-delany-domainkeys-base-01.txt

shall be considered harmful.
I've often thought it was time to start thinking of using NAPTR records for such things as PKI since the represent the most powerful and flex able RR records we have as in for instance and now would be a good time to start using them as in, for example.
order pref flags service regexp replacement IN NAPTR 100 10 "n" "PK2U+smime:pkcs7:https" "" "pkinfo.example.bar/[input]". IN NAPTR 90 10 "n" "PK2U+smime:pkcs7:ldaps" "" "pkinfo2.example.bar/[input]". 

Some of these concepts are also outlined in.

http://www.ietf.org/internet-drafts/draft-daigle-snaptr-01.txt



>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Richard Shockey, Senior Manager, Strategic Technology Initiatives
NeuStar Inc.
46000 Center Oak Plaza  -   Sterling, VA  20166
sip:rshockey(at)iptel.org   sip:57141(_at_)fwd(_dot_)pulver(_dot_)com
ENUM +87810-13313-31331
PSTN Office +1 571.434.5651 PSTN Mobile: +1 703.593.2683,  Fax: +1 815.333.1237
<mailto:richard(at)shockey.us> or <mailto:richard.shockey(at)neustar.biz>
<http://www.neustar.biz> ; <http://www.enum.org>
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Anonymous signed mail, Nathaniel Borenstein
Next by Date:  Re: Anonymous signed mail, domainkeys-feedbackbase01
Previous by Thread:  Re: Anonymous signed mail, Nathaniel Borenstein
Next by Thread:  Re: Anonymous signed mail, domainkeys-feedbackbase01
Indexes:  [Date] [Thread] [Top] [All Lists]