kmip message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Re: [kmip] Groups - Modification of KMIP Compliance Statements Version 002 (Redefining_KMIP_Compliance_v002.ppt) uploaded
- From: Bruce Rich <brich@us.ibm.com>
- To: Robert.Lockhart@thalesesec.com
- Date: Tue, 22 Mar 2011 15:51:15 -0500
Bob,
Here are some comments on the current
draft.
On slide 2, I'm puzzled that the draft
says that neither the server nor the client is required to do anything
by the spec. I disagree. The 1.0 spec lays some clear requirements
on the server. See chapter 12, lines 1905-1907 and especially line
1971 which requires the server implement something from the profile spec.
I agree that we did not lay requirements on the clients. This
was not an oversight, but a deliberate decision to encourage KMIP usage.
And on slide 6, the draft would require
a KMIP Compliant Server to implement ALL transport stacks. The only
two current transport stacks are TLS 1.0 and TLS 1.2. We deliberately
set up TLS 1.2 as a separate profile, given the sparsity of stack support
for that level of the protocol, so that one could have a compliant server
without needing a miracle. I do not think it wise to reverse that
decision just yet.
Bruce A Rich
brich at-sign us dot ibm dot com
From:
Robert.Lockhart@thalesesec.com
To:
kmip@lists.oasis-open.org
Date:
03/20/2011 04:43 PM
Subject:
[kmip] Groups
- Modification of KMIP Compliance Statements Version 002 (Redefining_KMIP_Compliance_v002.ppt)
uploaded
Updated version of the presentation to include initial
feedback.
-- Robert Lockhart
The document revision named Modification of KMIP Compliance Statements
Version 002 (Redefining_KMIP_Compliance_v002.ppt) has been submitted by
Robert Lockhart to the OASIS Key Management Interoperability Protocol
(KMIP) TC document repository. This document is revision #1 of
Redefining_KMIP_Compliance.ppt.
Document Description:
A preliminary proposal to change how servers and clients claim KMIP
compliance by recommending 3 definitions of compliance. Two for servers
and one for clients.
View Document Details:
http://www.oasis-open.org/committees/document.php?document_id=41537
Download Document:
http://www.oasis-open.org/committees/download.php/41537/Redefining_KMIP_Compliance_v002.ppt
Revision:
This document is revision #1 of Redefining_KMIP_Compliance.ppt. The
document details page referenced above will show the complete revision
history.
PLEASE NOTE: If the above links do not work for you, your email application
may be breaking the link into two pieces. You may be able to copy
and paste
the entire link address into the address field of your web browser.
-OASIS Open Administration
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]