[Last-Call] Secdir last call review of draft-ietf-emu-tls-eap-types-11

Melinda Shore via Datatracker <noreply@ietf.org> Sat, 04 February 2023 01:19 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Melinda Shore via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
Cc: draft-ietf-emu-tls-eap-types.all@ietf.org, emu@ietf.org, last-call@ietf.org
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <167547355548.40427.1521347613044647956@ietfa.amsl.com>
Reply-To: Melinda Shore <melinda.shore@nomountain.net>
Date: Fri, 03 Feb 2023 17:19:15 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/B_g94Vy4A1H3kO2orIw_FMbWep0>
Subject: [Last-Call] Secdir last call review of draft-ietf-emu-tls-eap-types-11

Reviewer: Melinda Shore
Review result: Ready

This document updates TLS-based EAP methods to use key derivation mechanisms
from TLS 1.3, along with other TLS 1.3-required updates.  It's clearly written
and I believe could be implemented from.  There are several very minor nits,
which I actually don't think need to be addressed but are mentioned here in the
interest of completeness.  Section 3.1 is a very nice piece of work, as is the
security considerations.

2.1 “The inclusion of the EAP type makes the derivation method specific.” 
“method-specific” or “specific to the method” might be clearer

2.2 “PAC” should probably be spelled out on its first use.  Also EMSK and other
initialisms
 “j’th inner methods” should be singular
“In TLS 1.3, the derivation of IMCK[j] used both a different label” should be
present tense (“uses”)

2.4 should probably use either MS-CHAP or MS-CHAPv1 consistently

[Last-Call] Secdir last call review of draft-ietf… Melinda Shore via Datatracker
Re: [Last-Call] Secdir last call review of draft-… Alan DeKok