IETF
ace
ace@jabber.ietf.org
Wednesday, July 23, 2014< ^ >
Room Configuration
Room Occupants

GMT+0
[12:31:24] Slide Monitor joins the room
[12:31:44] ilari.liusvaara leaves the room
[12:31:48] Room Feed joins the room
[12:32:17] Room Feed leaves the room
[12:32:31] Video Feed joins the room
[12:32:48] Slide Monitor leaves the room
[12:33:12] Slide Feed joins the room
[12:36:54] Paolo Saviano joins the room
[12:43:55] Carsten Bormann joins the room
[12:54:40] ראש תחום joins the room
[12:56:26] Carlos Pignataro joins the room
[12:56:30] Carlos Pignataro leaves the room
[12:56:53] Erik Wahlstrom joins the room
[12:59:14] Scott Rea joins the room
[12:59:15] Derek Atkins joins the room
[13:00:14] Robert Cragie joins the room
[13:00:24] Stefanie Gerdes joins the room
[13:00:45] Olaf Bergmann joins the room
[13:00:46] Teemu Savolainen joins the room
[13:01:26] <ראש תחום> Is anyone listening remotely?
[13:01:40] Derek Atkins leaves the room
[13:01:43] <Erik Wahlstrom> yes, works just fine.
[13:01:44] <Scott Rea> try - but no sound being broadcast
[13:01:49] <ראש תחום> If you would like me to relay a comment, please prefix it with "MIC"
[13:02:05] <ראש תחום> Scott, could you hear Hannes?
[13:02:07] cw-ietf joins the room
[13:02:19] <Scott Rea> Nop - but can see video feed??
[13:02:30] Derek Atkins joins the room
[13:02:46] obergmann joins the room
[13:02:48] <Paolo Saviano> Scott are you using meetecho?
[13:02:53] <Scott Rea> yes
[13:02:57] sarikaya2012 joins the room
[13:02:59] <Scott Rea> worked fine last few days
[13:03:14] <ראש תחום> Li Kepeng speaking...
[13:03:22] <Erik Wahlstrom> I'm using meetecho and get both video and sound.
[13:03:31] <Scott Rea> let me try coming in again...
[13:03:39] Scott Rea leaves the room
[13:03:48] <Paolo Saviano> ok
[13:05:30] Melinda Shore joins the room
[13:05:58] Scott Rea joins the room
[13:06:22] <Scott Rea> Back - this time everything is working ;-)
[13:06:28] <Erik Wahlstrom> nice!
[13:06:33] <Paolo Saviano> good :)
[13:06:45] Derek Atkins leaves the room
[13:07:06] <Erik Wahlstrom> any questions about that guy just send me an email. think it was posted in the presentation from stockholm.
[13:07:10] skumar joins the room
[13:07:12] Derek Atkins joins the room
[13:07:51] <ראש תחום> Ludwig Seitz speaking
[13:10:18] <Scott Rea> Ludwig mic died
[13:10:58] <ראש תחום> Must be on the ME side.  Mic working in room.
[13:11:01] <Scott Rea> just getting static now - or is that onlu me?
[13:11:09] <Robert Cragie> OK for me
[13:11:11] <Derek Atkins> I am hearing no audio
[13:11:23] <Scott Rea> Grrrrr....
[13:11:36] <ראש תחום> Is anyone using the IETF audio stream, rather than meetecho?
[13:11:53] <Robert Cragie> I'm just using Meetecho
[13:12:05] <Stefanie Gerdes> i use the audio stream
[13:12:19] Melinda Shore leaves the room
[13:12:19] <Stefanie Gerdes> I have no problems
[13:12:25] Scott Rea leaves the room
[13:12:34] Kathleen Moriarty joins the room
[13:12:36] <Stefanie Gerdes> http://ietf90streaming.dnsalias.net/ietf/ietf908.m3u
[13:13:22] Melinda Shore joins the room
[13:13:41] Scott Rea joins the room
[13:14:25] <Robert Cragie> So there is a slight difference between being able to measure time and being able to keep time
[13:14:43] Scott Rea leaves the room
[13:14:46] <Robert Cragie> In other words, does it have a wallclock
[13:15:03] Scott Rea joins the room
[13:15:08] <Robert Cragie> This could be important for expirations etc.
[13:17:15] <ראש תחום> Repeating from earlier, for new joiners: If you would like me to relay a comment into the room, please prefix it with "MIC"
[13:17:46] <Robert Cragie> Probably need to be more precise about "middle box"
[13:17:56] alessandro amirante joins the room
[13:18:16] <Carsten Bormann> Robert Cragie: good point about wall clock and "keeping time"
[13:21:21] Scott Rea leaves the room
[13:21:40] Scott Rea joins the room
[13:22:37] <Robert Cragie> Need to consider channel binding with a hybrid approach
[13:23:45] Scott Rea leaves the room
[13:24:10] <Robert Cragie> I think the word is "paradigm". Scores high on the Dilbert points as well :-)
[13:24:19] meadmaker joins the room
[13:24:38] meadmaker leaves the room
[13:24:56] Mark Donnelly joins the room
[13:25:56] Scott Rea joins the room
[13:27:27] <Robert Cragie> I think there is still a case for splitting the roles of the authorization server
[13:28:05] <Erik Wahlstrom> agent, looks like a classic reverse proxy
[13:28:11] <Robert Cragie> In the "push and confirm" case, it is pre-authorizing (1 and the missing return) and then authorizing for access (2 and 5)
[13:28:20] <obergmann> @Robert Cragie: yes, definitely
[13:28:38] <Robert Cragie> Sorry, I meant (3 and 4) in the last case
[13:28:38] ilari.liusvaara joins the room
[13:28:53] <Robert Cragie> (2 and 5) is the actual access of course
[13:30:05] <Robert Cragie> Agree with Rene
[13:30:19] tlyu@mit.edu joins the room
[13:33:43] massimiliano.pala joins the room
[13:36:09] <Robert Cragie> Re. what Dave is saying - this is why we need to split the roles of the authorization server
[13:39:01] kaduk joins the room
[13:41:28] skumar leaves the room
[13:41:43] massimiliano.pala leaves the room
[13:44:34] <tlyu@mit.edu> are we looking at slide 7 of "problem description"?
[13:45:02] <Stefanie Gerdes> yes
[13:49:53] <Robert Cragie> Re. what Dave is saying - it doesn't always matter, i.e. a certificate as a token
[13:50:31] <Robert Cragie> There is nothing confidential and a MITM can't alter it
[13:50:35] massimiliano.pala joins the room
[13:54:05] <tlyu@mit.edu> MIC: sorry if this is already covered. "push" of authorization info is not inherently a part of Kerberos, but is a feature of Active Directory. other models of authorization are possible with Kerberos
[14:06:19] <Paolo Saviano> Hi everybody! Try Meetecho Session at http://www.meetecho.com/ietf90/ace
[14:06:58] sftcd joins the room
[14:07:15] Erik Wahlstrom leaves the room
[14:08:10] <ראש תחום> tlyu: Sorry… I was away for a bit.  Did someone else read your comment in the room?  Or does it still make sense for me to do it now?
[14:08:19] Erik Wahlstrom joins the room
[14:08:46] <ראש תחום> (It's been almost 15 minutes.  I guess I'm not being a very good jabber-channeler.)
[14:09:03] <tlyu@mit.edu> maybe if authorization info flows come up again
[14:09:07] <ראש תחום> OK
[14:15:53] <Carsten Bormann> e.g., section 3.2 of draft-gerdes-ace-dcaf-authorize-00.txt
[14:16:53] <Carsten Bormann> http://tools.ietf.org/html/draft-gerdes-ace-dcaf-authorize-00#section-3.2
[14:18:56] <Robert Cragie> I agree with Michael
[14:20:27] <Robert Cragie> MIC: The roles of the authorization server need to be distinct, i.e. client pre-authorization and resource server access authorization.
[14:20:38] <ראש תחום> in mic queue
[14:20:49] <Robert Cragie> Thx
[14:22:05] <Carsten Bormann> Robert Cragie: What is your definition of "client pre-az"?
[14:25:48] <Robert Cragie> @Carsten: Obtaining a token of some description which the RS can use in conjunction with the authorization servers second role
[14:26:18] metricamerica joins the room
[14:26:55] <Robert Cragie> This is not meant to be going towards a solution - the two phases/roles have come up numerous times todya
[14:27:08] <Carsten Bormann> (And they will come up again.)
[14:27:51] <Robert Cragie> Exactly, however they are not distinguished in these models or any I have seen so far (maybe I need to read DCAF more closely?)
[14:28:16] <Carsten Bormann> The draft I'm going to be talking about: http://tools.ietf.org/html/actors
[14:30:26] semery joins the room
[14:31:10] satoru.kanno@jabber.org joins the room
[14:33:27] <semery> Isn't network communication a significant power consumer?  If so then it seems that the Push model is more conducive for resource servers as the authorization data is provided in the ticket from the client.
[14:33:38] Simon Romano joins the room
[14:35:38] <obergmann> @semery: yes, it is -- there are quite impressive numbers (see e.g. Carsten's slides from the JOSE meeting on Monday)
[14:35:52] Mark Donnelly leaves the room
[14:37:22] <semery> @obergmann: Thank you, I'll take a look.
[14:39:33] ראש תחום leaves the room
[14:40:23] Carsten Bormann leaves the room
[14:40:25] ראש תחום joins the room
[14:40:39] cabo joins the room
[14:41:09] <cabo> Slide 6: s/JOSE/JSON/
[14:42:44] Teemu Savolainen leaves the room
[14:48:00] <Robert Cragie> Encryption is predominantly done using symmetric cryptography even if the symmetric key is derived from asymmetric crypto
[14:48:49] <cabo> It's certainly not an either/or but a symm only vs. hybrid
[14:49:00] <cabo> But I think most people hear mean that anyway
[14:49:03] <Robert Cragie> @Carsten - that's right
[14:49:46] <Robert Cragie> But then what it comes down to is persistence of the symmetric key
[14:55:21] a a joins the room
[14:56:33] <obergmann> Carstens CBOR-Parser has a Codesize of 770 B on an ARM Cortex M3
[15:00:28] Johannes Morgenroth joins the room
[15:06:14] Erik Wahlstrom leaves the room
[15:06:42] Johannes Morgenroth leaves the room
[15:12:57] Melinda Shore leaves the room
[15:18:04] Pasquale Bevilacqua joins the room
[15:19:38] Pasquale Bevilacqua leaves the room
[15:22:23] sarikaya2012 leaves the room
[15:25:36] semery leaves the room
[15:29:56] cw-ietf leaves the room
[15:30:45] Kathleen Moriarty leaves the room
[15:31:00] Kathleen Moriarty joins the room
[15:31:17] metricamerica leaves the room
[15:31:54] Simon Romano leaves the room
[15:32:49] cabo leaves the room
[15:33:19] Kathleen Moriarty leaves the room
[15:33:32] ראש תחום leaves the room
[15:33:33] a a leaves the room
[15:34:16] Video Feed leaves the room
[15:34:19] satoru.kanno@jabber.org leaves the room
[15:34:19] obergmann leaves the room
[15:34:29] Olaf Bergmann leaves the room
[15:34:49] <Slide Feed> Meetecho Session is over, thank you!!
[15:35:05] Scott Rea leaves the room
[15:35:11] alessandro amirante leaves the room
[15:35:17] Derek Atkins leaves the room
[15:35:19] sftcd leaves the room
[15:35:21] Stefanie Gerdes leaves the room
[15:35:31] Robert Cragie leaves the room
[15:35:34] Slide Feed leaves the room
[15:35:53] massimiliano.pala leaves the room
[15:36:24] Paolo Saviano leaves the room
[15:41:29] massimiliano.pala joins the room
[15:41:44] kaduk leaves the room
[15:50:10] sftcd joins the room
[15:53:49] sftcd leaves the room
[16:13:28] tlyu@mit.edu leaves the room
[16:25:15] satoru.kanno@jabber.org joins the room
[16:27:24] cabo joins the room
[16:33:36] Kathleen Moriarty joins the room
[16:39:51] satoru.kanno@jabber.org leaves the room
[16:48:00] satoru.kanno@jabber.org joins the room
[16:49:22] Kathleen Moriarty leaves the room
[16:50:20] cabo leaves the room
[16:52:59] ראש תחום joins the room
[16:53:33] ראש תחום leaves the room
[17:02:26] cabo joins the room
[17:26:49] massimiliano.pala leaves the room
[17:33:11] massimiliano.pala joins the room
[18:34:05] massimiliano.pala leaves the room
[18:39:47] massimiliano.pala joins the room
[18:45:51] cabo leaves the room
[18:53:38] massimiliano.pala leaves the room
[18:55:26] satoru.kanno@jabber.org leaves the room
[18:57:42] cabo joins the room
[19:18:01] cabo leaves the room
[19:18:46] Kathleen Moriarty joins the room
[19:18:59] Kathleen Moriarty leaves the room
[19:23:59] massimiliano.pala joins the room
[19:26:30] massimiliano.pala leaves the room
[19:50:02] massimiliano.pala joins the room
[19:56:32] massimiliano.pala leaves the room
[19:58:49] massimiliano.pala joins the room
[20:46:31] massimiliano.pala leaves the room
[20:57:55] massimiliano.pala joins the room
[21:24:14] massimiliano.pala leaves the room
[22:41:28] ilari.liusvaara leaves the room: offline
[22:53:42] massimiliano.pala joins the room
[22:59:46] massimiliano.pala leaves the room
[23:01:54] massimiliano.pala joins the room
[23:05:59] massimiliano.pala leaves the room
[23:14:05] massimiliano.pala joins the room
[23:48:13] massimiliano.pala leaves the room
[23:52:16] massimiliano.pala joins the room
Powered by ejabberd Powered by Erlang Valid XHTML 1.0 Transitional Valid CSS!