Security Area Advisory Group (SAAG)

  o  Introduction

  o  Working Group Results

     -  AFT

     -  CAT

     -  DNSSEC

     -  IPSEC

     -  PEM

  o  New BOFs

     -  Object and Document Security

     -  HTTP-S

  o  Key Management Discussion

  o  Other

========

AFT

  o  Newly chartered WG to standardize SOCKS

  o  Extensions discussed to support UDP and Authentication

     -  Should AFT do this or should IPSEC provide the technology?

========

CAT

  o  Some operational experience with FTP and GSSAPI

     -  Some changes to the FTP Authentication Spec are required

     -  Consensus was reached

        o  A small sub-group will wordsmith the document

  o  IOP-GSSAPI was presented to the group and issues it raised
     were discussed

========

DNS Security

  o  Consensus reached on Eastlake-Kaufman

     -  Discussion of some minor issues

  o  Implementations are proceeding

  o  Expectation that Eastlake-Kaufman will become proposed before
     Danvers

========

IPSEC

  o  Met in three marathon sessions

  o  Rough consensus appears to exist on the IPSP protocol

  o  Presentations were made of several key management alternatives

     -  Patent issues between the proposals have been resolved

     -  All participants are willing to work together to arrive at a
        consensus proposal that meets the requirements of the working
        group

  o  Mailing list discussion will continue concerning the requirements 
     and how the features of the proposals address them

========

PEM

  o  Consensus was reached on the MIME-PEM integration documents

  o  The Chair Pro-Tem will report on the meeting results to the 
     Chair who was unable to be present 

  o  Expect MIME-PEM to go to proposed standard after the appropriate
     last calls are performed

  o  Roster was not signed.  Please sign the roster on the message
     board or send mail to "iwasthere@bs.mit.edu"

========

HTTP-S BOF

  o  To provide security services for the HTTP/WWW Suite

  o  BOF produced a first draft WG Charter and began discussion
     of requirements

  o  BOF received a presentation on SHTTP

========

Object/Document Security

  o  To provide a way to add security to documents and "static"
     objects

  o  BOF received several presentations on alternative technologies

  o  BOF will produce a charter and set of requirements

========

New Call for Action

  o  Router Requirements starting up

  o  Obvious security concerns

  o  Someone from the Security Area needs to pay attention

========

Dangling Reference

  o  Telnet encryption option

     -  TELNET WG shutdown

     -  We were going to document existing practice

     -  But that is a bad idea

========

Key Management

  o  Key generation is hard

  o  Classified world like distributed key generation

  o  In "our" world this may result in poorly chosen keys

  o  Perhaps we should consider favoring protocols that generate
     keys on KDCs

========

Other

  o  IETF meeting structure

     -  Do you like meeting at night?

  o  Overview of document next steps

     -  General overview of IETF/IESG process

  o  IETF Web pages

     -  http://www.ietf.cnri.reston.va.us

     -  Contains information on all WGs

        o  Pointers to RFCs, I-Ds and Charters

        o  Pointers to mailing lists and mailing list archives

  o  Other discussion