[Dime] Comments on draft-ietf-dime-erp-03.txt
"Glen Zorn" <gwz@net-zen.net> Wed, 10 March 2010 12:29 UTC
Return-Path: <gwz@net-zen.net>
X-Original-To: dime@core3.amsl.com
Delivered-To: dime@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 283DC3A6887 for <dime@core3.amsl.com>; Wed, 10 Mar 2010 04:29:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qrFvnzsN0DZb for <dime@core3.amsl.com>; Wed, 10 Mar 2010 04:29:02 -0800 (PST)
Received: from smtpauth14.prod.mesa1.secureserver.net (smtpauth14.prod.mesa1.secureserver.net [64.202.165.39]) by core3.amsl.com (Postfix) with SMTP id 4F9123A68B6 for <dime@ietf.org>; Wed, 10 Mar 2010 04:29:00 -0800 (PST)
Received: (qmail 823 invoked from network); 10 Mar 2010 12:29:04 -0000
Received: from unknown (115.87.89.44) by smtpauth14.prod.mesa1.secureserver.net (64.202.165.39) with ESMTP; 10 Mar 2010 12:29:04 -0000
From: Glen Zorn <gwz@net-zen.net>
To: dime@ietf.org
Date: Wed, 10 Mar 2010 19:28:40 +0700
Organization: Network Zen
Message-ID: <001501cac04d$390cdec0$ab269c40$@net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcrATTbybk5B4F+UTNK8+CDSFqopgQ==
Content-Language: en-us
Subject: [Dime] Comments on draft-ietf-dime-erp-03.txt
X-BeenThere: dime@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dime>
List-Post: <mailto:dime@ietf.org>
List-Help: <mailto:dime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Mar 2010 12:29:03 -0000
Section 4 says:
If there is an ER server in the same domain as the authenticator
(local domain), Diameter routing MUST
QUESTION:
Should this say "SHOULD: instead of "MUST"?
be configured so that this ERP/DER message reaches this server, even
if the Destination-Realm is not the local domain.
I wonder what the purpose of this paragraph might be: why would it be
necessary to configure Diameter routing at all? Actually, it seems like
this passage could break the ERP app, since the very next paragraph says
that the message should be routed to the bootstrapped ER server in the
re-authentication case. This seems like the correct behavior, so why modify
it?
Section 4 says:
When an ER server receives the ERP/DER message, it searches its local
database for a root key
FFS:
and authorization state?
There seems to be some confusion here: an ER server will _never_ receive an
ERP/DER message, since that is a _Diameter_ message, not an EAP message.
Actually, the confusion starts in the Introduction: "a new Diameter ERP
application to transport ERP messages between an ER authenticator and the ER
server". "Authenticator" is a technical term & refers to an EAP protocol
entity, not a Diameter entity, so how can send Diameter messages? Clearing
up this confusion might go a long way toward making an acceptable
specification.
- [Dime] Comments on draft-ietf-dime-erp-03.txt Glen Zorn
- Re: [Dime] Comments on draft-ietf-dime-erp-03.txt Tina TSOU
- Re: [Dime] Comments on draft-ietf-dime-erp-03.txt Qin Wu
- Re: [Dime] Comments on draft-ietf-dime-erp-03.txt Qin Wu
- Re: [Dime] Comments on draft-ietf-dime-erp-03.txt Glen Zorn
- Re: [Dime] Comments on draft-ietf-dime-erp-03.txt Sebastien Decugis