OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

kmip message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [kmip] Groups - Modification of KMIP Compliance Statements Version 002 (Redefining_KMIP_Compliance_v002.ppt) uploaded

Bob,

Here are some comments on the current draft.

On slide 2, I'm puzzled that the draft says that neither the server nor the client is required to do anything by the spec.  I disagree.  The 1.0 spec lays some clear requirements on the server.  See chapter 12, lines 1905-1907 and especially line 1971 which requires the server implement something from the profile spec.  I agree that we did not lay requirements on the clients.  This was not an oversight, but a deliberate decision to encourage KMIP usage.  

And on slide 6, the draft would require a KMIP Compliant Server to implement ALL transport stacks.  The only two current transport stacks are TLS 1.0 and TLS 1.2.  We deliberately set up TLS 1.2 as a separate profile, given the sparsity of stack support for that level of the protocol, so that one could have a compliant server without needing a miracle.  I do not think it wise to reverse that decision just yet.

Bruce A Rich
brich at-sign us dot ibm dot com



From:        Robert.Lockhart@thalesesec.com
To:        kmip@lists.oasis-open.org
Date:        03/20/2011 04:43 PM
Subject:        [kmip] Groups - Modification of KMIP Compliance Statements Version 002   (Redefining_KMIP_Compliance_v002.ppt) uploaded



Updated version of the presentation to include initial feedback.

-- Robert Lockhart

The document revision named Modification of KMIP Compliance Statements
Version 002 (Redefining_KMIP_Compliance_v002.ppt) has been submitted by
Robert Lockhart to the OASIS Key Management Interoperability Protocol
(KMIP) TC document repository.  This document is revision #1 of
Redefining_KMIP_Compliance.ppt.

Document Description:
A preliminary proposal to change how servers and clients claim KMIP
compliance by recommending 3 definitions of compliance.  Two for servers
and one for clients.

View Document Details:
http://www.oasis-open.org/committees/document.php?document_id=41537

Download Document:  
http://www.oasis-open.org/committees/download.php/41537/Redefining_KMIP_Compliance_v002.ppt

Revision:
This document is revision #1 of Redefining_KMIP_Compliance.ppt.  The
document details page referenced above will show the complete revision
history.


PLEASE NOTE:  If the above links do not work for you, your email application
may be breaking the link into two pieces.  You may be able to copy and paste
the entire link address into the address field of your web browser.

-OASIS Open Administration

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]