A Simple Authentication and Security Layer (SASL) and GSS-API Mechanism for the Security Assertion Markup Language (SAML)
RFC 6595

Note: This ballot was opened for revision 09 and is now closed.

(Stephen Farrell) Yes

(Peter Saint-Andre) (was Discuss) Yes

Comment (2012-02-21)
No email
send info
Thank you for addressing my comments.

As communicated by private email, I suggest the following tweaks:

Section 3.1...

OLD
   Domain name is specified in [RFC1035].  A domain name is either a
   "traditional domain name" as described in [RFC1035] or an
   "internationalized domain name" as described in [RFC5890].

NEW
   A domain name is either a "traditional domain name" as described 
   in [RFC1035] or an "internationalized domain name" as described 
   in [RFC5890].

Section 3.2...

OLD
   Should the client
   support Internationalized Resource Identifiers (IRIs) [RFC3987] it
   MUST first convert the IRI to a URI before transmitting it to the
   server [RFC5890].

NEW
   Should the client
   support Internationalized Resource Identifiers (IRIs) [RFC3987] it
   MUST first map the IRI to a URI before transmitting it to the
   server, as defined in Section 3.1 of [RFC3987].

(Ron Bonica) No Objection

(Stewart Bryant) No Objection

(Gonzalo Camarillo) No Objection

(Wesley Eddy) No Objection

(Adrian Farrel) (was Discuss) No Objection

(Russ Housley) (was Discuss) No Objection

(Dan Romascanu) No Objection

Comment (2012-01-17 for -** No value found for 'p.get_dochistory.rev' **)
No email
send info
8.2.  IANA OID

   The IANA is further requested to assign an OID for this GSS mechanism
   in the SMI numbers registry, with the prefix of
   iso.org.dod.internet.security.mechanisms (1.3.6.1.5.5) and to
   reference this specification in the registry.



What the document is actually asking IANA is to assign a new entry in the sub-registry for SMI Security for Mechanism Codes whose prefix is iso.org.dod.internet.security.mechanisms (1.3.6.1.5.5)

(Robert Sparks) No Objection

(Sean Turner) No Objection

Comment (2012-01-17 for -** No value found for 'p.get_dochistory.rev' **)
No email
send info
f1, s2, and f2: If you're talking about the scheme isn't it HTTPS?  r/HTTPs/HTTPS

s6.1: If you're referring to 4648 then you need to specify which alphabet is to be used.