Re: [Emu] Version Notification for draft-dekok-emu-eap-usability-00.txt

Carolin Baumgartner <latze@angry-red-pla.net> Fri, 16 July 2021 10:26 UTC

Return-Path: <latze@angry-red-pla.net>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 820B13A3137 for <emu@ietfa.amsl.com>; Fri, 16 Jul 2021 03:26:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ybt-jtcSuHGe for <emu@ietfa.amsl.com>; Fri, 16 Jul 2021 03:26:09 -0700 (PDT)
Received: from ans00.89grad.ch (ans00.89grad.ch [185.20.144.211]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 808253A3132 for <emu@ietf.org>; Fri, 16 Jul 2021 03:26:09 -0700 (PDT)
Received: from [83.222.129.243] (unknown [83.222.129.243]) by ans00.89grad.ch (Postfix) with ESMTPSA id D155CD9441; Fri, 16 Jul 2021 03:26:05 -0700 (PDT)
To: Alan DeKok <aland@deployingradius.com>
Cc: emu@ietf.org
References: <162611255836.29278.13767587856449885761@ietfa.amsl.com> <D71E4C2D-53AC-4453-AF26-39D8684CEAF0@deployingradius.com> <887c07d9-c62f-0fa4-e422-4e9bcfc39756@angry-red-pla.net> <3FDB94D5-CD72-446F-839C-C0130E9FD5E0@deployingradius.com>
From: Carolin Baumgartner <latze@angry-red-pla.net>
Message-ID: <ff264fc0-b374-c564-da05-63483cdfa9a7@angry-red-pla.net>
Date: Fri, 16 Jul 2021 12:26:05 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0
MIME-Version: 1.0
In-Reply-To: <3FDB94D5-CD72-446F-839C-C0130E9FD5E0@deployingradius.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/ouQ18nIIDDg31a-NLLnjdeJCbL8>
Subject: Re: [Emu] Version Notification for draft-dekok-emu-eap-usability-00.txt
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Jul 2021 10:26:15 -0000


>> General comment: EAP configuration and implementation is certainly one issue, but the whole certificate stuff is terrible from a user's point of view. We could try to solve it in this draft, but it certainly touches a lot of topics.
>    The goal of the draft is to leverage the web root, in order to bootstrap trust in EAP.  The only real thing that the user needs to do is to enter:
>
> Name: my.name@example.com
> Password: superSecret
>
>    Provided there's some network connection available, everything else can be automatic.
ah yes. I guess it might make sense to make that clear towards the 
beginning of the document :-) I only got a later ....

I finished the document now and really like it. I just think the 
normative part comes quite late in the document. Maybe it should also be 
referenced in earlier sections. To make it stronger, you could even use 
SHOULD instead of RECOMMENDED (in section 8.2), I guess

best regards
Carolin