I-D Action: draft-iab-identifier-comparison-03.txt

[internet-drafts@ietf.org]

A New Internet-Draft is available from the on-line Internet-Drafts directories.


	Title           : Issues in Identifier Comparison for Security Purposes
	Author(s)       : Dave Thaler
	Filename        : draft-iab-identifier-comparison-03.txt
	Pages           : 23
	Date            : 2012-07-16

Abstract:
   Identifiers such as hostnames, URIs, and email addresses are often
   used in security contexts to identify security principals and
   resources.  In such contexts, an identifier supplied via some
   protocol is often compared against some policy to make security
   decisions such as whether the principal may access the resource, what
   level of authentication or encryption is required, etc.  If the
   parties involved in a security decision use different algorithms to
   compare identifiers, then failure scenarios ranging from denial of
   service to elevation of privilege can result.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-iab-identifier-comparison

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-iab-identifier-comparison-03

A diff from previous version is available at:
http://tools.ietf.org/rfcdiff?url2=draft-iab-identifier-comparison-03


Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt