Protocol Action: 'COPS Over TLS' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Wed, 25 May 2005 19:34 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Db1e4-00072c-MG; Wed, 25 May 2005 15:34:24 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Db1e2-000707-4X; Wed, 25 May 2005 15:34:22 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA12965; Wed, 25 May 2005 15:34:20 -0400 (EDT)
Received: from [132.151.6.50] (helo=newodin.ietf.org) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1Db1wU-0006WZ-19; Wed, 25 May 2005 15:53:26 -0400
Received: from apache by newodin.ietf.org with local (Exim 4.43) id 1Db1du-00048t-O9; Wed, 25 May 2005 15:34:14 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1Db1du-00048t-O9@newodin.ietf.org>
Date: Wed, 25 May 2005 15:34:14 -0400
X-Spam-Score: 0.0 (/)
X-Scan-Signature: f60d0f7806b0c40781eee6b9cd0b2135
Cc: rap chair <scott.hahn@intel.com>, rap chair <mlstevens@rcn.com>, Internet Architecture Board <iab@iab.org>, rap mailing list <rap@ops.ietf.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Protocol Action: 'COPS Over TLS' to Proposed Standard
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Sender: ietf-announce-bounces@ietf.org
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'COPS Over TLS ' <draft-ietf-rap-cops-tls-11.txt> as a Proposed Standard This document is the product of the Resource Allocation Protocol Working Group. The IESG contact persons are Bert Wijnen and David Kessens. Technical Summary This document describes how to use Transport Layer Security (TLS) to secure Common Open Policy Service (COPS) connections over the Internet. This document also updates RFC 2748 by modifying the contents of the Client-Accept message. Working Group Summary There is WG consensus to publish this document on the standards track. However, the RAP WG has not been very active lately, and the current consensus is more of a "nobody objects" while only a small set of people worked on this doc. Protocol Quality Bert Wijnen has reviewed this document for the IESG. Further review has been done by Eric Rescorla and Uri Blumenthal. RFC-Editor notes: Page 9, Section 7.1 (second paragraph) OLD TEXT: --------- All PEP implementations MUST be able to securely acquire the trust anchor for each authorized Certification Authority (CA) that issues PDP certificates. Also, the PEPs MUST support a mechanism to securely acquire an access control list or filter identifying the set of authorized PDPs associated with each CA. NEW TEXT: --------- All PEP implementations MUST be able to securely acquire the trust anchor for each authorized Certification Authority (CA) that issues PDP certificates. Also, the PEPs MUST support a mechanism to securely acquire an access control list (ACL) or filter identifying the set of authorized PDPs associated with each CA. Deployments must take care to avoid circular dependencies in accessing trust anchors and ACLs. At a minimum, trust anchors and ACLs may be installed manually. ================= Add a new section after section 7 OLD TEXT: --------- 8 Backward Compatibility NEW TEXT: --------- 8 Cipher Suite Requirements Implementations MUST support the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher suite. All other cipher suites are optional. 9 Backward Compatibility renumber subsequent sections accordingly _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce