[Standards] Proposed XMPP Extension: Client Certificate Management for SASL EXTERNAL

Dirk Meyer dmeyer at tzi.de
Fri Dec 5 16:18:02 UTC 2008


Kurt Zeilenga wrote:
> If there are some hidden assumptions/use cases, I think they should be
> more clearly called out and discussed in the proposal.

I will do that in the next version

> Some XMPP server implementations already support multiple passwords
> per user.   Of course, the server has no clue how such passwords are
> shared amongst a user's clients, likewise for user certificates.

They do? What XEP handles that?

> I think what your proposal needs to focus on activation/deactivation
> of user certificates, leaving revocation handling to other documents
> (but noting that leave revocation handling to other documents).

Thanks for the input. I see now that I need to write much more doc about
the use case behind this. And I will not use revoke.


Dirk

-- 
Right now I'm having amnesia and deja vu at the same time. I think I've
forgotten this before.



More information about the Standards mailing list