Last Call: <draft-ietf-emu-eaptlscert-05.txt> (Handling Large Certificates and Long Certificate Chains in TLS-based EAP Methods) to Informational RFC
The IESG <iesg-secretary@ietf.org> Wed, 14 October 2020 19:39 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 2457F3A0FF5; Wed, 14 Oct 2020 12:39:18 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Last Call: <draft-ietf-emu-eaptlscert-05.txt> (Handling Large Certificates and Long Certificate Chains in TLS-based EAP Methods) to Informational RFC
X-Test-IDTracker: no
X-IETF-IDTracker: 7.20.0
Auto-Submitted: auto-generated
Precedence: bulk
CC: draft-ietf-emu-eaptlscert@ietf.org, joe@salowey.net, rdd@cert.org, Joseph Salowey <joe@salowey.net>, emu-chairs@ietf.org, emu@ietf.org
Reply-To: last-call@ietf.org
Sender: iesg-secretary@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <160270435768.16197.8909056833783118201@ietfa.amsl.com>
Date: Wed, 14 Oct 2020 12:39:18 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/mA3vPC-7xCWgfXulRzg1qJzzel8>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2020 19:39:18 -0000
The IESG has received a request from the EAP Method Update WG (emu) to consider the following document: - 'Handling Large Certificates and Long Certificate Chains in TLS-based EAP Methods' <draft-ietf-emu-eaptlscert-05.txt> as Informational RFC The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the last-call@ietf.org mailing lists by 2020-10-28. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract EAP-TLS and other TLS-based EAP methods are widely deployed and used for network access authentication. Large certificates and long certificate chains combined with authenticators that drop an EAP session after only 40 - 50 round-trips is a major deployment problem. This document looks at the this problem in detail and describes the potential solutions available. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-emu-eaptlscert/ No IPR declarations have been submitted directly on this I-D.