IETF Logo Mail Archive

Re: [radext] Liaison to government agencies

Bernard Aboba <bernard.aboba@gmail.com> Wed, 23 November 2022 23:06 UTC

Return-Path: <bernard.aboba@gmail.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 96BEDC14CF12 for <radext@ietfa.amsl.com>; Wed, 23 Nov 2022 15:06:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qlpYiCi_JRMR for <radext@ietfa.amsl.com>; Wed, 23 Nov 2022 15:06:36 -0800 (PST)
Received: from mail-ej1-x629.google.com (mail-ej1-x629.google.com [IPv6:2a00:1450:4864:20::629]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 549CFC14F74F for <radext@ietf.org>; Wed, 23 Nov 2022 15:06:36 -0800 (PST)
Received: by mail-ej1-x629.google.com with SMTP id m22so468239eji.10 for <radext@ietf.org>; Wed, 23 Nov 2022 15:06:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=NZjJTO/14DRGojcxH0FUq9SiNDUMjGYbZ1uBeytpqkU=; b=pEpqij7symxFXje9ityjgWX+upqXPqMkREIC92Ac9wxxeJD0wFxJWVeEHC31tB+YOu N++EMMDquE87VcwFC7cO/JJhDWrWgEVcWreenXTaW3uF+/BEAgvOXYOXtiXAjNwtOjJn PlWwBjPqC7qlxF8oc5Y8+S+wOBMaMJUDz5kD/tLLB3uo7P4k+slP3uleXG4OItdrDtIw duujmvkrnmsa7icOLv79v1SeCt9pTpfurMX4QuyE+L6KXoThAIr1EFK6OESFJCSuNMix kL2SHXVcAsfcYFz06YSBPC+K56bdBSnOFEk9rMxtyayp7KbikcYho5aoRo/ct56/IPqG nKVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=NZjJTO/14DRGojcxH0FUq9SiNDUMjGYbZ1uBeytpqkU=; b=pLbfuJYREcEAjHqJ4Ptiea20zn43bKkABtqdVgSypNlElx61SgDSlgvkW2kDvyLOQp Ct5R1b4hYiC2FTcC/KDN7NVoI2WomzUkmOtBTorgpDTHKShTuZuMvf+9urKz4/C2vA0J PMNDRosvVUAl0cwTSAvZDn8O4voscQpfXzTKgULPAKAsUFK/neltz0B3HBTPPWrKfEr2 2dCADXI3NTpvym3UJbPBXy1iIXDzGtA/xzLXzq2tYpDgunuAgQpPiFwaoeK6X57GCqRs hT0Y2bIua1cUb8Y9t+Ym3RvGTsMUik737q0aGLHNEJ/s7ErknmFsKvlDDzoN+GRB/Xdn dbZQ==
X-Gm-Message-State: ANoB5ploTTdFJXuHZQZYoH+DFYgkK/Q/9Gzu1pyRcj2CpRGO5L0gRBcV HQqAQoqu8otcwsGI2ChQ99B3DCseKLGgpUvJuzY=
X-Google-Smtp-Source: AA0mqf5xNH7eOo8e4QuQs96Zr1me6g1zLNlave6aPI2lx5nxLn/mreaTVOa7r4xz0Y3RqEbaTmOaJIi+24gpWOBILw8=
X-Received: by 2002:a17:906:77db:b0:7b2:8a6c:162f with SMTP id m27-20020a17090677db00b007b28a6c162fmr24913436ejn.693.1669244794370; Wed, 23 Nov 2022 15:06:34 -0800 (PST)
MIME-Version: 1.0
References: <4ce6d292-bb34-5dd7-7b8b-d43c282658f1@iea-software.com> <329FE6EA-C1E6-4E16-8D0C-A68C32B67FB9@gmail.com> <FC5C81F9-FEB5-4F9C-9A02-36837B7ABC09@deployingradius.com> <CAOW+2dtANzJDbAjmhHiz_m1pkk+SyfHu5uZ_ddp4PPMi17=0-A@mail.gmail.com> <E59F655C-ADC3-465A-BC9E-4445135BFE97@deployingradius.com> <2f8a0921-2e9e-751e-4f5d-42c5c9c3cb8a@dfn.de> <b96210fb-8a59-2606-bb0c-7cf365fb23e0@iea-software.com> <81A7763B-B2AE-4FBE-9A5E-1234C87393AE@deployingradius.com> <CAOW+2dvg2z9e_X0QzB+gnxDRK9wMdZy=S4x1LbsXzfP6AxrwtA@mail.gmail.com> <b036f5fd-60fc-352e-bf91-d832adba2545@cs.tcd.ie> <CAOW+2dvbercDhpHGhud8wbTOzVem+=CZ3qY2cat9Wno6G7VgjQ@mail.gmail.com> <ac383e60-b8b4-f46c-4b3c-4834fc4c827d@cs.tcd.ie>
In-Reply-To: <ac383e60-b8b4-f46c-4b3c-4834fc4c827d@cs.tcd.ie>
From: Bernard Aboba <bernard.aboba@gmail.com>
Date: Wed, 23 Nov 2022 15:06:23 -0800
Message-ID: <CAOW+2dvkaHgjMPkA4J4hC2NsC=VqEJFOs2a0WPiP2Y4HQ7ppig@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Cc: Peter Deacon <peterd@iea-software.com>, radext@ietf.org
Content-Type: multipart/alternative; boundary="00000000000003070c05ee2b57f4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/A0pgm0xEwYg_2wNbHDjITs5YHJo>
Subject: Re: [radext] Liaison to government agencies
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Nov 2022 23:06:38 -0000

Stephen said:

"Perhaps the charter text you'd like added would say that the WG needs to
establish what protocol requirements need to be met for FIPS-140 compliance
before defining anything?"

[BA] That seems like a good way to go about it. Just like the IETF has
learned to avoid "amateur lawyering", it is necessary to avoid "amateur
regulation interpretation", where participants offer their own
interpretation of regulations, speaking on behalf of government agencies.
In the RADEXT WG, we adopted the policies of other IETF WGs in requiring
that only employees or authorized representatives of government agencies be
allowed to speak on behalf of those agencies.

 "Establishing what protocol requirements need to be met"  shouldn't invite
a discussion among "amateur regulators" about what they think FIPS-140
"should mean".

On Wed, Nov 23, 2022 at 1:49 PM Stephen Farrell <stephen.farrell@cs.tcd.ie>
wrote:

>
> Hiya,
>
> On 23/11/2022 17:11, Bernard Aboba wrote:
> > [BA] Employees of NIST have a long history of engagement on network
> access
> > security.  The design of 802.11 security (including the RADIUS aspects)
> was
> > kicked off by a meeting at NIST. If FIPS compliance is a goal for this WG
> > (as some seem to think) then we should get info “from the horses mouth”.
>
> Ok, think I understand what you're after now, but I'm not
> sure that requires or would work via a liaison though, for
> various reasons.
>
> Perhaps the charter text you'd like added would say that
> the WG needs to establish what protocol requirements need
> to be met for FIPS-140 compliance before defining anything?
>
> S.
>

v2.23.0 | Report a Bug | By Email