Re: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication

Michael Sweet (mike@easysw.com)
Fri, 23 Apr 1999 14:04:00 -0400

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: philip.millwood@tricon-yum.com: "Re[2]: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authen"
• Next message: philip.millwood@tricon-yum.com: "Re[2]: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authen"
• Previous message: Manros, Carl-Uno B: "RE: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"
• Next in thread: SHIVAUN_ALBRIGHT@HP-Roseville-om2.om.hp.com: "RE: Re: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"

Keith Moore wrote:
>
> Servers are REQUIRED to implement "TLS + Basic" OR Digest.
>
> Clients are REQUIRED to implement Digest. If the client
> supports TLS then it is also REQUIRED to support "TLS + Basic".
>
> Won't fly, because it doesn't ensure interoperability.

Requiring TLS in all clients will force non-compliant clients.

Also, after looking at TLS more closely, TLS poses additional
interoperability concerns (specifically, there are no required
ciphers, only recommended ones.) If a TLS-capable server and
client can't find a common cipher to use, then they either have to
send data in the clear or drop the connection, which either kills
security or interoperability (take your pick)...

As much as I hate to say it, we're getting back to requiring Digest
alone (with the appropriate caveats in the implementer's guide).

-- 
______________________________________________________________________
Michael Sweet, Easy Software Products                  mike@easysw.com
Printing Software for UNIX                       http://www.easysw.com

• Next message: philip.millwood@tricon-yum.com: "Re[2]: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authen"
• Next message: philip.millwood@tricon-yum.com: "Re[2]: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authen"
• Previous message: Manros, Carl-Uno B: "RE: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"
• Next in thread: SHIVAUN_ALBRIGHT@HP-Roseville-om2.om.hp.com: "RE: Re: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"

Comments are owned by the poster. All other material is Copyright © 2001-2024 The Printer Working Group. All rights reserved. IPP Everywhere, the IPP Everywhere logo, and the PWG logo are trademarks of the IEEE-ISTO.
About the PWG · Privacy Policy · PWG Webmaster