The CAT WG met for one session. The Status of several ongoing work items was discussed. FTP Security is to be considered for Proposed Standard status at the next IESG meeting. Re GSS-V2, the proposed approach is to integrate the RFC2078bis changes list into an updated GSS-V2 base Internet-Draft during September, and then (following a WG Last-Call period) to submit the resulting RFC2078bis and the GSS C bindings as an aligned set to the IESG, requesting their advancement to Proposed Standards. A few further changes were required to draft-ietf-cat-snego-06.
William Nace (NSA) presented the recently-distributed FTP and DSA, Skipjack documents (targeted for informational status), draft-ietf-cat-ftpdsaauth-00 and draft-ietf-cat-ftpkeaskj-00. Peter Yee from Spyrus described use of Key Exchange Algorithm (KEA) with SKIPJACK; this cannot be used in Standards, however, until the algorithms have been declassified. It is interesting to note that NSA has cancelled the FORTEZZA-2 programme; it is not clear whether one consequence of this may be on the declassification of Skipjack. Brian Tung (ISI) presented and discussed the recently-revised kerberos-pk-init and kerberos-pk-cross drafts, and Cliff Neuman (ISI) discussed status and issues relative to the Kerberos RFC1510bis document, draft-ietf-cat-kerberos-revisions-00. John Linn led discussion on some specific issues related to RFC2078bis and RFC1964, and Mike Swift (Microsoft) proposed additional work items, relevant to RFC1964, in areas of user-user authentication and login via access servers.
Most of this session was spent in very detailed discussions on Kerberos, Secure negotiations (SNEGO) and the GSS-API interface. It is clear that Kerberos is now becoming integrated with Public Key systems. There are no facilities for authentication to the Key Distribution Centres (KDCs) with certificates, and for the KDCs to communicate with v3 certificates - with some extra parameters..