IETF Logo Mail Archive

Re: [radext] Extended IDs

Adam Bishop <Adam.Bishop@jisc.ac.uk> Tue, 12 December 2017 20:39 UTC

Return-Path: <adam.bishop@jisc.ac.uk>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BA34C12954B for <radext@ietfa.amsl.com>; Tue, 12 Dec 2017 12:39:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.32
X-Spam-Level:
X-Spam-Status: No, score=-4.32 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jisc.ac.uk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WyUJNh6IMwbK for <radext@ietfa.amsl.com>; Tue, 12 Dec 2017 12:39:16 -0800 (PST)
Received: from eu-smtp-delivery-189.mimecast.com (eu-smtp-delivery-189.mimecast.com [146.101.78.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3E0F81287A5 for <radext@ietf.org>; Tue, 12 Dec 2017 12:39:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jisc.ac.uk; s=mimecast20170213; t=1513111154; h=from:subject:date:message-id:to:mime-version:content-type:content-transfer-encoding:in-reply-to:references; bh=cX6q+AFZjMZW8oWHAhilUs9ZQrahKrBGfzWM9QpHCsY=; b=DkASJr8e15H0T7V4/KS7BzvwBCORbQd5y0oCqHE2FLTIodjFW0C1uM9Bqv5BL+J27ubE88j/SPSgvc8f9NQ/DZhpTprLCCykQNLddTaqNEPRH4eZqoQm+rYYOxfXq7e0VkyloaC/Nz3ZbXMT/yWBGpgG+tLRoMPI0gKDrocNee0=
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-ve1eur03lp0149.outbound.protection.outlook.com [213.199.154.149]) (Using TLS) by eu-smtp-1.mimecast.com with ESMTP id uk-mta-1-9ouSTVpkPJGYq0igA8hYWw-1; Tue, 12 Dec 2017 20:39:10 +0000
Received: from AM4PR07MB3508.eurprd07.prod.outlook.com (10.171.190.33) by AM4PR07MB3508.eurprd07.prod.outlook.com (10.171.190.33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.323.4; Tue, 12 Dec 2017 20:39:06 +0000
Received: from AM4PR07MB3508.eurprd07.prod.outlook.com ([fe80::fceb:5817:13c1:1678]) by AM4PR07MB3508.eurprd07.prod.outlook.com ([fe80::fceb:5817:13c1:1678%13]) with mapi id 15.20.0323.011; Tue, 12 Dec 2017 20:39:06 +0000
From: Adam Bishop <Adam.Bishop@jisc.ac.uk>
To: "radext@ietf.org" <radext@ietf.org>
Thread-Topic: [radext] Extended IDs
Thread-Index: AQHTKHKrqEQLrXT090aiKN4ZjCjQD6MqT+8AgBZxrIA=
Date: Tue, 12 Dec 2017 20:39:06 +0000
Message-ID: <933E6F70-A7C1-4168-9AC9-F925EF78D9E2@jisc.ac.uk>
References: <fef698a5-9802-c9be-04d7-1e869651c988@restena.lu> <dfd0ff02-c9e8-7253-4fb4-1e6def3e93b2@restena.lu>
In-Reply-To: <dfd0ff02-c9e8-7253-4fb4-1e6def3e93b2@restena.lu>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3445.4.7)
x-originating-ip: [2a00:23c4:2713:4710:38ce:a8f7:eb4a:8afa]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM4PR07MB3508; 20:gMRJXOD8N/uwipXwl0LrySG+36o+iKxg4MeHLbtphFfu3gXmzcBRylJxTZ2rdkCta5eTJnCy0AbCoHE4OdYq75D8srW7YHpD4N41Wcuz5lkDCENOtIeCm+eXEPrG516X010o6JDCTCEtTJgIyLf9Z6+bvPOfaUMtJgX60wekSI4=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: f9a9ecb4-fbf7-4c79-dcbd-08d541a063d9
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(5600026)(4604075)(2017052603307); SRVR:AM4PR07MB3508;
x-ms-traffictypediagnostic: AM4PR07MB3508:
x-microsoft-antispam-prvs: <AM4PR07MB3508FCE51F37F8AD979AA0F9DD340@AM4PR07MB3508.eurprd07.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(274715658323672)(35073007944872);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(2401047)(8121501046)(5005006)(3231023)(3002001)(10201501046)(93006095)(93001095)(6041248)(20161123564025)(20161123555025)(20161123562025)(201703131423075)(201702281529075)(201702281528075)(201703061421075)(201703061406153)(20161123558100)(20161123560025)(6072148)(201708071742011); SRVR:AM4PR07MB3508; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:AM4PR07MB3508;
x-forefront-prvs: 051900244E
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(346002)(366004)(199004)(24454002)(189003)(3280700002)(14454004)(36756003)(229853002)(83716003)(53546010)(478600001)(76176011)(25786009)(68736007)(2501003)(7736002)(305945005)(5250100002)(57306001)(6506007)(6116002)(102836003)(6512007)(2900100001)(53936002)(72206003)(50226002)(8936002)(6486002)(6246003)(316002)(786003)(74482002)(105586002)(99286004)(97736004)(33656002)(86362001)(106356001)(2351001)(82746002)(81166006)(6436002)(2906002)(5660300001)(2950100002)(6916009)(42882006)(5640700003)(1730700003)(81156014)(8676002)(3660700001); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR07MB3508; H:AM4PR07MB3508.eurprd07.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-ID: <A208A2EBC571BC4AA4E0FA740192E20E@eurprd07.prod.outlook.com>
MIME-Version: 1.0
X-OriginatorOrg: jisc.ac.uk
X-MS-Exchange-CrossTenant-Network-Message-Id: f9a9ecb4-fbf7-4c79-dcbd-08d541a063d9
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Dec 2017 20:39:06.7806 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 48f9394d-8a14-4d27-82a6-f35f12361205
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR07MB3508
X-MC-Unique: 9ouSTVpkPJGYq0igA8hYWw-1
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: base64
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/I5coHSX7Q7rkI0u_kv-gdxvN2kc>
Subject: Re: [radext] Extended IDs
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Dec 2017 20:39:19 -0000

On 28 Nov 2017, at 13:54, Stefan Winter <stefan.winter@restena.lu> wrote:
> In your reply to this call for adoption, please indicate which of the
> two drafts you think should be adopted. You can of course also indicate
> that none of the two are fit for purpose. The only thing you really
> shouldn't do is to vote for both; that wouldn't help the discussion move on.

Having read both drafts, I think the approach in draft-dekok is more suitable for adoption.

While assigning additional meaning to existing values can be problematic, there is sufficient explanation already present in the draft to reassure me that this shouldn’t interact negatively with existing implementations, and avoids changing or extending the header.

I agree with the observation that draft-chen could be problematic in federated deployments due to the potential for the identifier to leak between hops.

Regards,

Adam Bishop

  gpg: E75B 1F92 6407 DFDF 9F1C  BF10 C993 2504 6609 D460

jisc.ac.uk

Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800.

Jisc Services Limited is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under company number 2881024, VAT number GB 197 0632 86. The registered office is: One Castle Park, Tower Hill, Bristol BS2 0JA. T 0203 697 5800.

v2.23.0 | Report a Bug | By Email