kx509 Kerberized Certificate Issuance Protocol in Use in 2012
draft-hotz-kx509-06
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2012-07-31
|
06 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
2012-07-26
|
06 | (System) | IANA Action state changed to Waiting on RFC Editor from Waiting on Authors |
2012-07-25
|
06 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
2012-07-25
|
06 | (System) | IANA Action state changed to In Progress from On Hold |
2012-07-17
|
06 | (System) | IANA Action state changed to On Hold |
2012-07-16
|
06 | Cindy Morgan | State changed to RFC Ed Queue from Approved-announcement sent |
2012-07-09
|
06 | Russ Allbery | New version available: draft-hotz-kx509-06.txt |
2012-07-09
|
05 | Cindy Morgan | State changed to Approved-announcement sent from Approved-announcement to be sent::Point Raised - writeup needed |
2012-07-09
|
05 | Cindy Morgan | IESG has approved the document |
2012-07-09
|
05 | Cindy Morgan | Closed "Approve" ballot |
2012-07-09
|
05 | Cindy Morgan | Ballot approval text was changed |
2012-07-09
|
05 | Cindy Morgan | Ballot approval text was generated |
2012-07-09
|
05 | Cindy Morgan | Ballot writeup was changed |
2012-07-06
|
05 | Stephen Farrell | Ballot writeup was changed |
2012-07-06
|
05 | Stephen Farrell | Ballot writeup was changed |
2012-07-05
|
05 | Cindy Morgan | State changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation |
2012-07-05
|
05 | Ralph Droms | [Ballot Position Update] New position, No Objection, has been recorded for Ralph Droms |
2012-07-05
|
05 | Gonzalo Camarillo | [Ballot Position Update] New position, No Objection, has been recorded for Gonzalo Camarillo |
2012-07-04
|
05 | Pete Resnick | [Ballot Position Update] New position, No Objection, has been recorded for Pete Resnick |
2012-07-03
|
05 | Ron Bonica | [Ballot Position Update] New position, No Objection, has been recorded for Ronald Bonica |
2012-07-03
|
05 | Sean Turner | [Ballot Position Update] New position, No Objection, has been recorded for Sean Turner |
2012-07-02
|
05 | Russ Housley | [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley |
2012-07-02
|
05 | Robert Sparks | [Ballot Position Update] New position, No Objection, has been recorded for Robert Sparks |
2012-07-02
|
05 | Martin Stiemerling | [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling |
2012-06-29
|
05 | Stephen Farrell | Ballot writeup was changed |
2012-06-26
|
05 | Stewart Bryant | [Ballot Position Update] New position, No Objection, has been recorded for Stewart Bryant |
2012-06-26
|
05 | Stephen Farrell | Ballot writeup was changed |
2012-06-25
|
05 | Barry Leiba | [Ballot comment] [*** Update: the following comment has been addressed in the -05 version; thanks! ***] Stephen notes my concern about the "not (previously) standardized" … [Ballot comment] [*** Update: the following comment has been addressed in the -05 version; thanks! ***] Stephen notes my concern about the "not (previously) standardized" bit in the abstract. But I want to elevate it above a kinda-sorta comment, and say that this document *does* constitute an end run around krb-wg if "(previously)" is not removed, in that it tries to mislead readers about the standard status of this document, and only krb-wg can write a kerberos standard. (I'm sure that's not the intent, and that the author will likely be happy to remove the word; I just want to be sure about keeping it on the record.) |
2012-06-25
|
05 | Barry Leiba | [Ballot Position Update] Position for Barry Leiba has been changed to No Objection from Discuss |
2012-06-25
|
05 | Russ Allbery | New version available: draft-hotz-kx509-05.txt |
2012-06-13
|
04 | Stephen Farrell | Telechat date has been changed to 2012-07-05 from 2012-06-21 |
2012-06-12
|
04 | Brian Haberman | [Ballot comment] I support Barry's DISCUSS on this document. |
2012-06-12
|
04 | Brian Haberman | [Ballot Position Update] New position, No Objection, has been recorded for Brian Haberman |
2012-06-11
|
04 | Adrian Farrel | [Ballot comment] Nice capture of issues by Stephen in the IESG note in the write-up. (Not sure this is the right place to capture it, … [Ballot comment] Nice capture of issues by Stephen in the IESG note in the write-up. (Not sure this is the right place to capture it, but so long as the ISE finds it, who cares?) |
2012-06-11
|
04 | Adrian Farrel | [Ballot Position Update] New position, No Objection, has been recorded for Adrian Farrel |
2012-06-07
|
04 | Pearl Liang | IANA has reviewed draft-hotz-kx509-04 and has the following comments: IANA would have a question about this document. IANA Action: In the GSSAPI/Kerberos/SASL Service names registry … IANA has reviewed draft-hotz-kx509-04 and has the following comments: IANA would have a question about this document. IANA Action: In the GSSAPI/Kerberos/SASL Service names registry in the Generic Security Service Application Program Interface (GSSAPI)/Kerberos/Simple Authentication and Security Layer (SASL) Service Names registry located at: http://www.iana.org/assignments/gssapi-service-names/gssapi-service-names.xml a new service name would be added as follows: Service Name: kca_service Usage: Kerberized Certificate Authority Reference: [ RFC-to-be ] However, the document says: "This service is conventionally run on UDP port 9878, but this memo does not request that IANA standardize the port number." Unless there is a reason not to, IANA requests that the document request that port be allocated to the Kerberized Certificate Issuance Protocol. |
2012-06-06
|
04 | Stephen Farrell | State changed to IESG Evaluation from Publication Requested |
2012-06-06
|
04 | Barry Leiba | [Ballot discuss] Stephen notes my concern about the "not (previously) standardized" bit in the abstract. But I want to elevate it above a kinda-sorta comment, … [Ballot discuss] Stephen notes my concern about the "not (previously) standardized" bit in the abstract. But I want to elevate it above a kinda-sorta comment, and say that this document *does* constitute an end run around krb-wg if "(previously)" is not removed, in that it tries to mislead readers about the standard status of this document, and only krb-wg can write a kerberos standard. (I'm sure that's not the intent, and that the author will likely be happy to remove the word; I just want to be sure about keeping it on the record.) |
2012-06-06
|
04 | Barry Leiba | Ballot discuss text updated for Barry Leiba |
2012-06-06
|
04 | Barry Leiba | [Ballot discuss] Stephen notes my concern about the "not (previously) standardized" bit in the abstract. But I want to elevate it above a kinda-sorta comment, … [Ballot discuss] Stephen notes my concern about the "not (previously) standardized" bit in the abstract. But I want to elevate it above a kinda-sorta comment, and say that this document *does* constitute an end run around krb-wg if "(previously)" is not removed, in that it tries to mislead readers about the standard status of this document, and only krb-wg can write a kerberos standard. |
2012-06-06
|
04 | Barry Leiba | [Ballot Position Update] New position, Discuss, has been recorded for Barry Leiba |
2012-06-06
|
04 | Stephen Farrell | Telechat date has been changed to 2012-06-21 from 2012-06-07 |
2012-06-06
|
04 | Stephen Farrell | Ballot has been issued |
2012-06-06
|
04 | Stephen Farrell | Ballot approval text was generated |
2012-06-06
|
04 | Stephen Farrell | [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell |
2012-06-06
|
04 | Stephen Farrell | Created "Approve" ballot |
2012-06-06
|
04 | Stephen Farrell | Ballot writeup was changed |
2012-06-06
|
04 | Stephen Farrell | Ballot writeup was changed |
2012-06-06
|
04 | Stephen Farrell | Ballot writeup was generated |
2012-05-30
|
04 | Stephen Farrell | Responsible AD changed to Stephen Farrell from Russ Housley |
2012-05-30
|
04 | Amy Vezza | The draft draft--hotz-kx509-04 is ready for publication from the Independent Stream. Please ask IESG to review it, as set out in RFC 5742. The … The draft draft--hotz-kx509-04 is ready for publication from the Independent Stream. Please ask IESG to review it, as set out in RFC 5742. The following is some background for this draft, please forward it to IESG along with this request ... This draft's abstract says: This document describes a protocol, called kx509, for using Kerberos tickets to acquire X.509 certificates. These certificates may be used for many of the same purposes as X.509 certificates acquired by other means, but if a Kerberos infrastructure already exists then the overhead of using kx509 may be much less. While not (previously) standardized, this protocol is already in use at several large organizations, and certificates issued with this protocol are recognized by the International Grid Trust Federation. It was reviewed by Jim Schaad, who suggested several improvements. The authors have made these, I believe this version is ready for publication. Thanks, Nevil (ISE) PS, for IANA: I'm ccing you on this because its IANA Considerations section says: IANA is requested to add "kca_service" as a GSSAPI/Kerberos/SASL service name for a "Kerberized Certificate Authority". This service is conventionally run on UDP port 9878, but this memo does not request that IANA standardize the port number. Please review this request. |
2012-05-30
|
04 | Amy Vezza | Placed on agenda for telechat - 2012-06-07 |
2012-05-30
|
04 | Amy Vezza | Stream changed to ISE |
2012-05-30
|
04 | Amy Vezza | Intended Status changed to Informational |
2012-05-30
|
04 | Amy Vezza | IESG process started in state Publication Requested |
2012-02-21
|
04 | (System) | New version available: draft-hotz-kx509-04.txt |
2011-12-12
|
04 | (System) | Document has expired |
2011-06-10
|
03 | (System) | New version available: draft-hotz-kx509-03.txt |
2011-04-06
|
02 | (System) | New version available: draft-hotz-kx509-02.txt |
2010-11-08
|
01 | (System) | New version available: draft-hotz-kx509-01.txt |
2010-05-13
|
00 | (System) | New version available: draft-hotz-kx509-00.txt |