[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Design] Re: the KEY debate

To: Scott Rose <scottr@antd.nist.gov>, Derek Atkins <warlord@MIT.EDU>
Subject: RE: [Design] Re: the KEY debate
From: "Hallam-Baker, Phillip" <pbaker@verisign.com>
Date: Wed, 7 Aug 2002 09:04:51 -0700
Cc: namedroppers@ops.ietf.org, design@lists.freeswan.org

The problem with the SIKED BOF is that the organizers had a preconcieved
notion of their solution and platform.

The reason that there was little interest in the SIKED approach is that
there is already an Open Working Group that is developing a key centric PKI
that provides a superset of the proposed SIKED functionality with much less
complexity called XKMS.

XKMS is supported by all the major PKI vendors and many others. It is an
important part of the infrastructure being developed to support Web Services
Security.


The IETF has spent ten years each developing PKIX and DNSSEC. There is no
likelihood that SIKED or anything like it will complete in under three
years. Nor after the DNS Directorate/OPTIN debacle can the IETF claim any
particular credibility as an open standards organization over W3C or OASIS.

This group has no business making proposals for general purpose PKI
infrastructure until it has proposed a deployable infrastructure to support
DNS itself.


	Phill

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

Prev by Date: Re: [Design] Re: the KEY debate
Next by Date: Re: [Design] Re: the KEY debate
Previous by thread: call for consensus: GSSAPI TKEY exchange and TSIG RFC
Next by thread: Re: [Design] Re: the KEY debate
Index(es):
- Date
- Thread