Release Meeting Minutes/2013-05-07
Shawn Emery, Will Fiveash, Greg Hudson, Ben Kaduk, Zhanna Tsitkov, Tom Yu
- Interim meeting -- SASL OpenID, OAuth, SAML mech says it does mutual auth when it actually doesn't. Consensus in session was to change GS2 requirements. For the "channel bound" GSS extension, consensus in the session was to use the "null context" approach. IAKERB has a PKU2U text dependency. Also some OID change stuff.
- Replay cache -- customer had some rcache corruption. Considering partitioning a directory based on authenticator data.
- Conflicts in same process?
- Actually across processes. Will look into some more. Timestamps zeroed out etc.