IETF Logo Mail Archive

Re: [Emu] Provisioning, configuration, etc. and EAP

Alan DeKok <aland@deployingradius.com> Sun, 27 March 2022 13:48 UTC

Return-Path: <aland@deployingradius.com>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFF3C3A0125 for <emu@ietfa.amsl.com>; Sun, 27 Mar 2022 06:48:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fuy3FoKJDYkm for <emu@ietfa.amsl.com>; Sun, 27 Mar 2022 06:48:41 -0700 (PDT)
Received: from mail.networkradius.com (mail.networkradius.com [62.210.147.122]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 261723A0112 for <emu@ietf.org>; Sun, 27 Mar 2022 06:48:40 -0700 (PDT)
Received: from smtpclient.apple (24-52-251-6.cable.teksavvy.com [24.52.251.6]) by mail.networkradius.com (Postfix) with ESMTPSA id 25A642D9; Sun, 27 Mar 2022 13:48:36 +0000 (UTC)
Authentication-Results: NetworkRADIUS; dmarc=none (p=none dis=none) header.from=deployingradius.com
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 15.0 \(3693.60.0.1.1\))
From: Alan DeKok <aland@deployingradius.com>
In-Reply-To: <69074.1648310244@dooku>
Date: Sun, 27 Mar 2022 09:48:35 -0400
Cc: EMU WG <emu@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <88AA8004-A40E-44B1-AD00-E2F949F24F22@deployingradius.com>
References: <8C03CE4A-B987-4962-9AA3-5DF8FB32ECB5@deployingradius.com> <69074.1648310244@dooku>
To: Michael Richardson <mcr+ietf@sandelman.ca>
X-Mailer: Apple Mail (2.3693.60.0.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/Lf5WS8f67amwurHRdY2kwfhSjsg>
Subject: Re: [Emu] Provisioning, configuration, etc. and EAP
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 27 Mar 2022 13:48:46 -0000

On Mar 26, 2022, at 11:57 AM, Michael Richardson <mcr+ietf@sandelman.ca> wrote:
> I'm gonna quibble with your choice of terms, because there has been some
> progress/convergence in the terminology.  This is good news, because sharing
> terminology is an important leap forward.

  That's good.

>> reconfiguration - how does a device with an existing configuration
>> update it?  When / where / why / how?
> 
> Why is this step different than configuration?

  I put that in, in part because of EAP-CREDS.  In part because I'm not sure that updates fall within the bounds of provisioning / onboarding.

  i.e. I already have something, and I can get onto the network.  How often do I refresh those credentials?  What happens if my authorization changes?  How do I get told if my credentials are withdrawn?

  Perhaps this could better be described as policies and signalling for refresh and updates of provisioned data.  The act of doing the update is just provisioning.  Knowing when / where / how / why to do that update isn't quite part of the provisioning process.

> There is a plan to unify/contrast the terminology in section 4 of:
>      draft-irtf-t2trg-secure-bootstrapping/
> 
> but that section hasn't happened yet.

  I saw that.  :(

  Alan DeKok.

v2.23.0 | Report a Bug | By Email