[radext] I-D Action: draft-dekok-radext-radiusv11-04.txt
internet-drafts@ietf.org Thu, 13 April 2023 14:37 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: radext@ietf.org
Delivered-To: radext@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D4906C15170B; Thu, 13 Apr 2023 07:37:30 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: radext@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 10.0.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: radext@ietf.org
Message-ID: <168139665085.46949.1053433811058053355@ietfa.amsl.com>
Date: Thu, 13 Apr 2023 07:37:30 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/-RAgH9cE7n__JIMjJ7S1z_dEFDk>
Subject: [radext] I-D Action: draft-dekok-radext-radiusv11-04.txt
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.39
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Apr 2023 14:37:30 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This Internet-Draft is a work item of the RADIUS EXTensions (RADEXT) WG of the IETF. Title : RADIUS Version 1.1 Author : Alan DeKok Filename : draft-dekok-radext-radiusv11-04.txt Pages : 26 Date : 2023-04-13 Abstract: This document defines Application-Layer Protocol Negotiation Extensions for use with RADIUS/TLS and RADIUS/DTLS. These extensions permit the negotiation of an additional application protocol for RADIUS over (D)TLS. No changes are made to RADIUS/UDP or RADIUS/TCP. The extensions allow the negotiation of a transport profile where the RADIUS shared secret is no longer used, and all MD5-based packet signing and attribute obfuscation methods are removed. When this extension is used, the previous Authenticator field is repurposed to contain an explicit request / response identifier, called a Token. The Token also allows more than 256 packets to be outstanding on one connection. This extension can be seen as a transport profile for RADIUS, as it is not an entirely new protocol. It uses the existing RADIUS packet layout and attribute format without change. As such, it can carry all present and future RADIUS attributes. Implementation of this extension requires only minor changes to the protocol encoder and decoder functionality. The protocol defined by this extension is named "RADIUS version 1.1", or "RADIUSv11". The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-dekok-radext-radiusv11/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-dekok-radext-radiusv11-04.html A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-dekok-radext-radiusv11-04 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- [radext] I-D Action: draft-dekok-radext-radiusv11… internet-drafts
- Re: [radext] I-D Action: draft-dekok-radext-radiu… Alan DeKok