security-services message

Subject: Re: [security-services] Minutes: SSTC Conference Call (September 22nd, 2009)

From: Josh Howlett <josh.howlett@gmail.com>
To: Scott Cantor <cantor.2@osu.edu>
Date: Thu, 24 Sep 2009 16:14:00 +0100

On 24 Sep 2009, at 16:06, Scott Cantor wrote:
> Josh Howlett wrote on 2009-09-24:
>> Unfortunately I was unable to participate as I was traveling.
>>
>>> SC wonders if this new Confirmation Method (CM) is potentially
>>> controversial. (The spec proposes a new CM rather than using the
>>> existing holder-of-key CM.) It is likely WSS implementations may
>>> break. Also we seem to be setting a precedent, which is not bad per
>>> se, but we need to consider this proposal carefully.
>>
>> Would it be possible to expand on these controversial points?
>
> I wasn't making any new points, I was just explaining the basic issues
> covered by the previous threads.

That's a relief, thanks :-)

josh.

References:
- Minutes: SSTC Conference Call (September 22nd, 2009)
  - From: Tom Scavo <tscavo@ncsa.uiuc.edu>
- Re: [security-services] Minutes: SSTC Conference Call (September 22nd, 2009)
  - From: Josh Howlett <josh.howlett@gmail.com>
- RE: [security-services] Minutes: SSTC Conference Call (September 22nd, 2009)
  - From: "Scott Cantor" <cantor.2@osu.edu>