"Henry" == Henry B Hotz <hotz(_at_)jpl(_dot_)nasa(_dot_)gov> writes:
Henry> I was thinking that if it's a proprietary OTP, we can still
Henry> use it even if the algorithm is secret. If we know we're
Henry> getting a "clear text" OTP value and we have an (unspecified)
Henry> method of verifying it against some external infrastructure,
Henry> that's enough to use otp-preauth. However I don't think this
Henry> actually requires a complete registry. A single
Henry> undefined/external entry for the existing PSKC registry would
Henry> be sufficient, wouldn't it?
It's exactly the proprietary OTPs where I think they should specify
their own URI in their own namespace.
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf