IETF Logo Mail Archive

Re: [radext] Review comments for draft-ietf-radext-dynamic-discovery-08

"Jim Schaad" <ietf@augustcellars.com> Fri, 14 February 2014 19:02 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB0361A0068 for <radext@ietfa.amsl.com>; Fri, 14 Feb 2014 11:02:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mSLDtAHYNV3G for <radext@ietfa.amsl.com>; Fri, 14 Feb 2014 11:02:13 -0800 (PST)
Received: from smtp4.pacifier.net (smtp4.pacifier.net [64.255.237.176]) by ietfa.amsl.com (Postfix) with ESMTP id CD2BD1A02D0 for <radext@ietf.org>; Fri, 14 Feb 2014 11:02:13 -0800 (PST)
Received: from Philemon (c-98-247-233-24.hsd1.wa.comcast.net [98.247.233.24]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: jimsch@nwlink.com) by smtp4.pacifier.net (Postfix) with ESMTPSA id 4DD7C38F41; Fri, 14 Feb 2014 11:02:12 -0800 (PST)
From: Jim Schaad <ietf@augustcellars.com>
To: 'Stefan Winter' <stefan.winter@restena.lu>, radext@ietf.org
References: <00dd01cef1eb$45fc8a30$d1f59e90$@augustcellars.com> <52B07A58.8030007@restena.lu> <018301cf05c1$a2f50f70$e8df2e50$@augustcellars.com> <52FD0057.9060204@restena.lu>
In-Reply-To: <52FD0057.9060204@restena.lu>
Date: Fri, 14 Feb 2014 11:00:32 -0800
Message-ID: <041501cf29b7$091663d0$1b432b70$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQG68Osw9QBxRQd1JEph+IN2FXoiKwFp0/QZAbAgaA8BnPmveZq30PWQ
Content-Language: en-us
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/nek-6_OkmkVeJ6lPw1Afb-YSoTg
Subject: Re: [radext] Review comments for draft-ietf-radext-dynamic-discovery-08
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Feb 2014 19:02:20 -0000

It turned out that there were some missing pieces. These are now in place.

IANA Considerations:

This document requires that  a number of Object Identifiers be assigned.
They re now under the control of IANA following [I-D.housley-pkix-oids].

IANA is requested to assign the following identifiers:

* TBD99 is to be assigned from the "SMI Security for PKIX Module Identifier
Registry".  The suggested description is id-mod-nai-realm-08.

* TBD98 is to be assigned from the "SMI Security for PKIX Other Name Forms
Registry."  The suggested description is id-on-nai.




New ASN.1 Module

PKIXNaiRealm08 {iso(1) identified-organization(3) dod(6)
     internet(1) security(5) mechanisms(5) pkix(7) id-mod(0)
     id-mod-nai-realm-08 (TBD99) }

 DEFINITIONS EXPLICIT TAGS ::=

 BEGIN

 -- EXPORTS ALL --

 IMPORTS

    id-pkix
    FROM PKIX1Explicit-2009
        {iso(1) identified-organization(3) dod(6) internet(1)
         security(5) mechanisms(5) pkix(7) id-mod(0)
         id-mod-pkix1-explicit-02(51)}
           -- from RFC 5280, RFC 5912

    OTHER-NAME
    FROM PKIX1Implicit-2009
       {iso(1) identified-organization(3) dod(6) internet(1) security(5)
       mechanisms(5) pkix(7) id-mod(0) id-mod-pkix1-implicit-02(59)}
             -- from RFC 5280, RFC 5912
 ;


 -- Service Name Object Identifier

 id-on   OBJECT IDENTIFIER ::= { id-pkix 8 }

 id-on-nai OBJECT IDENTIFIER ::= { id-on TBD98 }

 -- Service Name

 naiRealm OTHER-NAME ::= { NAIRealm IDENTIFIED BY { id-on-nai }}

 NAIRealm ::= UTF8String (SIZE (1..MAX))

 END

v2.23.0 | Report a Bug | By Email