[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ietf
Subject:    Re: Last Call: <draft-santesson-auth-context-extension-09.txt> (Authentication Context Certificate E
From:       Russ Housley <housley () vigilsec ! com>
Date:       2015-11-17 16:27:48
Message-ID: 4B6CB39F-1CC1-4DD8-ADFE-C9A1BA4DB5F7 () vigilsec ! com
[Download RAW message or body]

I have no objection to the change from Information to Standards Track.  However, \
there are some errors in the ASN.1 modules that need to be corrected.

The module in Appendix A.1 uses the 1988 syntax, and it imports but never uses the \
Extension type.  Removing the IMPORT statement altogether will resolve this problem.

The module in Appendix A.2 uses the 2008 syntax, and the IMPORT statement is missing \
the ending semi-colon.

In addition, the Appendix A.2 should contain an extension set similar to the ones in \
RFC 5912.  I suggest something like:

   ElegnamndenCertExtensions EXTENSION ::= {
       ext-AuthenticationContext, ... }

Russ


On Nov 17, 2015, at 10:34 AM, Kathleen Moriarty wrote:

> The draft below was sent through last call as Proposed Standard, which
> was intended, but the document header was listed as informational.  If
> there is no issue changing the header and proceeding as proposed
> standard, we'll go ahead with that.  Please let me know if there is a
> problem and we'll put it through as informational, it was marked
> correctly everywhere else and did go through the 4 week last call
> process.
> 
> Thank you,
> Kathleen
> 
> 
> > Subject: Last Call: <draft-santesson-auth-context-extension-09.txt>
> > (Authentication Context Certificate Extension) to Proposed Standard
> > Date: Tue, 29 Sep 2015 15:08:19 -0700
> > From: The IESG <iesg-secretary@ietf.org>
> > Reply-To: ietf@ietf.org
> > To: IETF-Announce <ietf-announce@ietf.org>
> > 
> > 
> > The IESG has received a request from an individual submitter to consider
> > the following document:
> > - 'Authentication Context Certificate Extension'
> > <draft-santesson-auth-context-extension-09.txt> as Proposed Standard
> > 
> > The IESG plans to make a decision in the next few weeks, and solicits
> > final comments on this action. Please send substantive comments to the
> > ietf@ietf.org mailing lists by 2015-10-27. Exceptionally, comments may be
> > sent to iesg@ietf.org instead. In either case, please retain the
> > beginning of the Subject line to allow automated sorting.
> > 
> > Abstract
> > 
> > 
> > This document defines an extension to certificates according to
> > [RFC5280]. The extension defined in this document holds data about
> > how the certificate subject was authenticated by the Certification
> > Authority that issued the certificate in which this extension appears
> > 
> > This document also defines one data structure for inclusion in this
> > Extension. The data structure is designed to hold information when
> > the subject is authenticated using a SAML assertion [SAML].
> > 
> > 
> > 
> > 
> > The file can be obtained via
> > https://datatracker.ietf.org/doc/draft-santesson-auth-context-extension/
> > 
> > IESG discussion can be tracked via
> > https://datatracker.ietf.org/doc/draft-santesson-auth-context-extension/ballot/
> > 
> > 
> > No IPR declarations have been submitted directly on this I-D.
> > 
> > Note: The editorial comments in the shepherd report have been addressed.
> > These will be removed/updated in a future version of the shepherd
> > report, but I didn't want to hold up processing of this draft any further.
> > 


[prev in list] [next in list] [prev in thread] [next in thread]