I-D Action: draft-dekok-radext-deprecating-radius-03.txt
internet-drafts@ietf.org Thu, 03 August 2023 18:53 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 392F4C14CF1E for <i-d-announce@ietf.org>; Thu, 3 Aug 2023 11:53:30 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-dekok-radext-deprecating-radius-03.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 11.5.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <169108881022.1178.3676898857627478187@ietfa.amsl.com>
Date: Thu, 03 Aug 2023 11:53:30 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/irKU5ceRGKBRqeH5J_fNRJz_pR4>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Aug 2023 18:53:30 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Deprecating RADIUS/UDP and RADIUS/TCP Author : Alan DeKok Filename : draft-dekok-radext-deprecating-radius-03.txt Pages : 27 Date : 2023-08-03 Abstract: RADIUS crypto-agility was first mandated as future work by RFC 6421. The outcome of that work was the publication of RADIUS over TLS (RFC 6614) and RADIUS over DTLS (RFC 7360) as experimental documents. Those transport protocols have been in wide-spread use for many years in a wide range of networks. They have proven their utility as replacements for the previous UDP (RFC 2865) and TCP (RFC 6613) transports. With that knowledge, the continued use of insecure transports for RADIUS has serious and negative implications for privacy and security. This document formally deprecates the use of the User Datagram Protocol (UDP) and of the Transmission Control Protocol (TCP) as transport protocols for RADIUS. These transports are permitted inside of secure networks, but their use even in that environment is strongly discouraged. For all other environments, the use of secure transports such as IPsec or TLS is mandated. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-dekok-radext-deprecating-radius/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-dekok-radext-deprecating-radius-03.html A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-dekok-radext-deprecating-radius-03 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- I-D Action: draft-dekok-radext-deprecating-radius… internet-drafts