Moonshot standards milestone achieved

Those of you who have been following Moonshot for a while will be aware that from the outset we have been keen to get the technology adopted as a standard. Thanks to the hard work of the Application Bridging for Federated Access Beyond web (ABFAB) Working Group of the IETF, December saw an important milestone with the publication of three Moonshot-related RFC documents:

RFC 7055

Title: A GSS-API Mechanism for the Extensible Authentication Protocol

Author: Author: S. Hartman, Ed., J. Howlett

URL: http://www.rfc-editor.org/rfc/rfc7055.txt

This document defines protocols, procedures, and conventions to be employed by peers implementing the Generic Security Service Application Program Interface (GSS-API) when using the Extensible Authentication Protocol mechanism.  Through the GS2 family of mechanisms defined in RFC 5801, these protocols also define how Simple Authentication and Security Layer (SASL) applications use the Extensible Authentication Protocol.

RFC 7056

Title: Name Attributes for the GSS-API Extensible Authentication Protocol (EAP) Mechanism

Author: S. Hartman, J. Howlett

URL: http://www.rfc-editor.org/rfc/rfc7056.txt

The naming extensions to the Generic Security Service Application Programming Interface (GSS-API) provide a mechanism for applications to discover authorization and personalization information associated with GSS-API names.  The Extensible Authentication Protocol GSS-API mechanism allows an Authentication, Authorization, and Accounting

(AAA) peer to provide authorization attributes alongside an authentication response.  It also supplies mechanisms to process Security Assertion Markup Language (SAML) messages provided in the AAA response.  This document describes how to use the Naming Extensions API to access that information.

RFC 7057

Title: Update to the Extensible Authentication Protocol (EAP) Applicability Statement for Application Bridging for Federated Access Beyond Web (ABFAB)

Author: S. Winter, J. Salowey

URL http://www.rfc-editor.org/rfc/rfc7057.txt

This document updates the Extensible Authentication Protocol (EAP) applicability statement from RFC 3748 to reflect recent usage of the EAP protocol in the Application Bridging for Federated Access Beyond web (ABFAB) architecture.

These documents are now Proposed Standards in the IETF Standards track. A Proposed Standard specification is “... generally stable, has resolved known design choices, is believed to be well-understood, has received significant community review, and appears to enjoy enough community interest to be considered valuable.”

Following close on their heels is Application Bridging for Federated Access Beyond Web (ABFAB) Architecture, which has reached “last call status” so should be published soon.

This milestone is a great achievement and the authors and the wider ABFAB Working Group should be congratulated.