IETF Logo Mail Archive

Re: [kitten] I-D Action: draft-ietf-kitten-pkinit-freshness-04.txt

Greg Hudson <ghudson@mit.edu> Mon, 21 March 2016 17:57 UTC

Return-Path: <ghudson@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2C66012D9BD for <kitten@ietfa.amsl.com>; Mon, 21 Mar 2016 10:57:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.202
X-Spam-Level:
X-Spam-Status: No, score=-4.202 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3ZmB_UzmII7L for <kitten@ietfa.amsl.com>; Mon, 21 Mar 2016 10:57:17 -0700 (PDT)
Received: from dmz-mailsec-scanner-8.mit.edu (dmz-mailsec-scanner-8.mit.edu [18.7.68.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8CF712D9E1 for <kitten@ietf.org>; Mon, 21 Mar 2016 10:57:07 -0700 (PDT)
X-AuditID: 12074425-d93ff70000007cc8-bd-56f035f2de7d
Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by (Symantec Messaging Gateway) with SMTP id 20.C4.31944.2F530F65; Mon, 21 Mar 2016 13:57:06 -0400 (EDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id u2LHv6oB027879 for <kitten@ietf.org>; Mon, 21 Mar 2016 13:57:06 -0400
Received: from [18.101.9.162] (vpn-18-101-9-162.mit.edu [18.101.9.162]) (authenticated bits=0) (User authenticated as ghudson@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id u2LHv4MX018386 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for <kitten@ietf.org>; Mon, 21 Mar 2016 13:57:06 -0400
References: <20160321174343.31977.39539.idtracker@ietfa.amsl.com>
To: kitten@ietf.org
From: Greg Hudson <ghudson@mit.edu>
Message-ID: <56F035EF.1030304@mit.edu>
Date: Mon, 21 Mar 2016 13:57:03 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0
MIME-Version: 1.0
In-Reply-To: <20160321174343.31977.39539.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrAIsWRmVeSWpSXmKPExsUixG6novvJ9EOYwbYjhhZHN69icWD0WLLk J1MAYxSXTUpqTmZZapG+XQJXxp2Hs9gKGpgqNj34z9jAeImxi5GTQ0LARGLl/MVMILaQQBuT ROMv4y5GLiD7OKPE5PMzGCGcW0wSTRdb2UCqhAW8JVo3nwJKcAAlHCWm73cHCYsICEvs3vqO GcRmE1CWWL9/KwuIzSugJnHr1Fcwm0VAVeLLuVVgi0UFIiSezD3JCFEjKHFy5hMWkJGcAk4S l76Eg4SZBfQkdlz/xQphy0tsfzuHeQIj/ywkHbOQlM1CUraAkXkVo2xKbpVubmJmTnFqsm5x cmJeXmqRroVebmaJXmpK6SZGcOC5qO5gnPPX6xCjAAejEg8vw6r3YUKsiWXFlbmHGCU5mJRE eVfqfQgT4kvKT6nMSCzOiC8qzUktPsQowcGsJMJbCwx3Id6UxMqq1KJ8mJQ0B4uSOC8jAwOD kEB6YklqdmpqQWoRTFaGg0NJglcWpFGwKDU9tSItM6cEIc3EwQkynAdoeKYJyPDigsTc4sx0 iPwpRl2OBT9ur2USYsnLz0uVEuc9ClIkAFKUUZoHNwecMFI5F71iFAd6S5hXFWQdDzDZwE16 BbSECWiJS+Q7kCUliQgpqQbGql8Zz37IHJ+wdZv5Z64Zkfd5GGf6xTKq2Ka2FSafTZGvXTG5 xmRh6wTep8fcb25wm7NwsvPngOQDYVzsfdMS7jufXNH0MsLgsZpAXIGNg39CVOLmnrQ5p4TC df/Gyz8+O8eh1Dnr7MTaLwt45ILr2ZkfXmVqlqnp5dZhDjRaZOm60PZn9nUlluKMREMt5qLi RABEMb8z8wIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/eRfr9tcQ_tc2S5011Y5HyRKwtT4>
Subject: Re: [kitten] I-D Action: draft-ietf-kitten-pkinit-freshness-04.txt
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Mar 2016 17:57:19 -0000

In section 2.4, I think the cross-reference for KDC_ERR_PREAUTH_FAILED
should be RFC 4120; although RFC 6113 elaborates on its use, the initial
definition is still in 4120.

Other than that small editorial issue, my two comments to -03 are addressed.

v2.23.0 | Report a Bug | By Email