RE: AuthenticatorLocale Definition

["Mishra, Prateek" <pmishra@netegrity.com>]

This is clearly a typo or a mis-transcription. There was
a (private? I forget) discussion around changing the name to 

  <EntityLocale>

to capture the sense of its use more clearly.

I notice that there is a similar typo in 5.1.10 of
draft-sstc-core-discussion-01. This may be the source of the problem.

ISSUE:[F2F#3-12] is a pointer to this issue.

- prateek

>>-----Original Message-----
>>From: Hal Lockhart [mailto:hal.lockhart@entegrity.com]
>>Sent: Friday, August 24, 2001 10:53 AM
>>To: 'security-services@lists.oasis-open.org'
>>Subject: AuthenticatorLocale Definition
>>
>>
>>The current core describes AuthenticatorLocale thus:
>>
>>The <AuthenticationLocale> element specifies the DNS domain 
>>name and IP
>>address for the system entity that performed the authentication.
>>
>>IMO this might reasonably be interpreted as the IP and DNS of the
>>Authentication Authority, or associated server that validated the
>>credentials. Is that what was wanted? My understanding was 
>>that we wanted
>>the IP and DNS or the client being authenticated.
>>
>>Proposed wording:
>>
>>The <AuthenticationLocale> element specifies the DNS domain 
>>name and IP
>>address of the host  which the system entity used when it was 
>>authenticated.
>>
>>-----------------
>>
>>I would also like to see the semantics of the DNS name 
>>specified explicitly
>>(or the element dropped.)
>>
>>Proposed wording:
>>
>>The DNS domain name is the result of doing a reverse lookup on the IP
>>address contained in the authentication messages at the time the
>>Authentication took place.
>>
>>Note: we already have issues open on this stuff: DS-7-04 and DS-7-05.
>>
>>Hal
>>
>>----------------------------------------------------------------
>>To subscribe or unsubscribe from this elist use the subscription
>>manager: <http://lists.oasis-open.org/ob/adm.pl>
>>