IETF Logo Mail Archive

Re: [radext] Extended IDs

Enke Chen <enkechen@cisco.com> Tue, 12 December 2017 00:55 UTC

Return-Path: <enkechen@cisco.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC874128D0D for <radext@ietfa.amsl.com>; Mon, 11 Dec 2017 16:55:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.52
X-Spam-Level:
X-Spam-Status: No, score=-14.52 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vJDswtyocyGV for <radext@ietfa.amsl.com>; Mon, 11 Dec 2017 16:55:20 -0800 (PST)
Received: from alln-iport-1.cisco.com (alln-iport-1.cisco.com [173.37.142.88]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 06B1F126DFE for <radext@ietf.org>; Mon, 11 Dec 2017 16:55:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1710; q=dns/txt; s=iport; t=1513040120; x=1514249720; h=subject:to:references:cc:from:message-id:date: mime-version:in-reply-to:content-transfer-encoding; bh=uAwujpKx2r4PkHycVfHNqFLTOLm6RREwzbkrSSB6MFY=; b=LUBiWS47mu4PHWQfJAWJnt1LMv2PjbLxfp2jlW62avX9XFywJJ9TBByn 1W97AE2Kg2PjAmQ7//k0cMkc1rdMAjy/0YWaL+ZWpOjTyZaaR9D4E0FDm c5oVBHJFQ+p8HwGxdA6SFx27qjINi8r/KHXlLG2RLV93Ntqdh0nDsQDRH U=;
X-IronPort-AV: E=Sophos;i="5.45,393,1508803200"; d="scan'208";a="43318768"
Received: from alln-core-5.cisco.com ([173.36.13.138]) by alln-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 12 Dec 2017 00:55:19 +0000
Received: from [10.156.165.56] ([10.156.165.56]) by alln-core-5.cisco.com (8.14.5/8.14.5) with ESMTP id vBC0tI1Q024172; Tue, 12 Dec 2017 00:55:19 GMT
To: Winter Stefan <stefan.winter@restena.lu>
References: <fef698a5-9802-c9be-04d7-1e869651c988@restena.lu> <dfd0ff02-c9e8-7253-4fb4-1e6def3e93b2@restena.lu> <A4B9DD54-859E-4EDC-9596-6D2274E9F367@deployingradius.com>
Cc: Alan DeKok <aland@deployingradius.com>, radext@ietf.org, Enke Chen <enkechen@cisco.com>, Naiming Shen <naiming@cisco.com>
From: Enke Chen <enkechen@cisco.com>
Message-ID: <963470f4-8cd5-e278-c5f1-bfeff41c6a5f@cisco.com>
Date: Mon, 11 Dec 2017 16:55:18 -0800
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <A4B9DD54-859E-4EDC-9596-6D2274E9F367@deployingradius.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/NOg-tKovMm5PIXRpxef8xDVVdX8>
Subject: Re: [radext] Extended IDs
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Dec 2017 00:55:22 -0000

Hi, Folks:

Apologies for not being able to reply earlier.  We are certainly open to revising the
draft based on suggestions from Alan and other members, and will start working on it
should draft-chen-radext-identifier-attr-02 be adopted by the WG.

Thanks.  -- Enke

On 11/28/17 8:16 AM, Alan DeKok wrote:
> On Nov 28, 2017, at 8:54 AM, Stefan Winter <stefan.winter@restena.lu> wrote:
>> In your reply to this call for adoption, please indicate which of the
>> two drafts you think should be adopted. You can of course also indicate
>> that none of the two are fit for purpose. The only thing you really
>> shouldn't do is to vote for both; that wouldn't help the discussion move on.
> 
>   I prefer draft-dekok-radext-request-authenticator-02
> 
>   If the WG decides to use draft-chen-radext-identifier-attr-02, then I believe it needs significant changes before it's ready for publication:
> 
> - use of "ad hoc" complex data type violates RFC 6929 Section 6.3
> 
> - the negotiation can be simplified with no loss of functionality.  See my draft for examples.
> 
> - there is minimal discussion as to how this affects proxies, TCP, UDP, etc. 
> 
> - there is minimal discussion of inter-operability considerations with existing RADIUS solutions
> 
> - there are few guidelines for implementors
> 
>   While some WG members may prefer the technical solution in draft-chen-radext-identifier-attr-02, I think everyone can agree that the other proposal has these issues exhaustively enumerated and discussed.
> 
>   Alan DeKok.
> 
> _______________________________________________
> radext mailing list
> radext@ietf.org
> https://www.ietf.org/mailman/listinfo/radext
>

v2.23.0 | Report a Bug | By Email