Re: [secdir] Secdir review of draft-wkumari-dhc-capport-13

Hannes Tschofenig <hannes.tschofenig@gmx.net> Thu, 17 September 2015 09:44 UTC

Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 79A371B2C2A; Thu, 17 Sep 2015 02:44:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.711
X-Spam-Level:
X-Spam-Status: No, score=-0.711 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YSKUo8oUYVqM; Thu, 17 Sep 2015 02:44:08 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5E981B29F4; Thu, 17 Sep 2015 02:44:07 -0700 (PDT)
Received: from [192.168.10.183] ([134.76.0.127]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0ML6XF-1ZcmiC1mYD-000MEi; Thu, 17 Sep 2015 11:43:49 +0200
To: Warren Kumari <warren@kumari.net>, Hannes Tschofenig <Hannes.Tschofenig@arm.com>
References: <F01D8B85CFF58440B2A13965FBA90CA4013459D8EC0F@GEORGE.Emea.Arm.com> <CAHw9_i+Eou1HjXw4hLkjeOswhubHHFex-+oebVM7GByq9+WVCw@mail.gmail.com>
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Openpgp: id=071A97A9ECBADCA8E31E678554D9CEEF4D776BC9
X-Enigmail-Draft-Status: N1110
Message-ID: <55FA8B49.7040303@gmx.net>
Date: Thu, 17 Sep 2015 11:43:37 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0
MIME-Version: 1.0
In-Reply-To: <CAHw9_i+Eou1HjXw4hLkjeOswhubHHFex-+oebVM7GByq9+WVCw@mail.gmail.com>
Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="deTV7UsFLDceDVec7nE68uNoBmXAopegD"
X-Provags-ID: V03:K0:dHX7a23A0l9aYAnnZ0/qq5/XWE/K6DslrWiTdBuVlKcTX4KPeKF ctasznCIkDiSZPKs0ibvCtROwell1NJuuWd6XO9WmtiPj7+RBHNSkj8LLaTgSdT8jnuZqOO 5dVfNlfCD39IWIuI7J6tukqaELZlMvylMmj2bvKWqwvu/TnJy4NudYT0O8KPI1iVTDCKJRB ysK3XiYK+7hqk5VWRoZBA==
X-UI-Out-Filterresults: notjunk:1;V01:K0:o9nXMWaiQAU=:R+jxVGDt+EmQpDa4p86Jp3 Sl3umek6rNQ2WyrKdlxop3Sgw2aMR2d37bVhzhqJEjHyEd/Yv5Soudlp5P8DsRd/nRHxFLaTI gSnBG8BEMHQsJpmGlTmVftQML4jtQiufdfDEVyU1XLAQwrWN+W1RzMFnbRETEiJfPFv58DIga cJ3xXZr55QTqlAw2XHscmzemENXb3m9NHAX6WwToLbW6UC51HF0PRlMhs3rjsuqv894tjofno SoiH0hgRlOxHgZWI7RQ3tH+7x5Kyb8fQhIZsLE59eTXxMQDr6VJmuShtUNmpXquIK/fXXzbpA I3sR6L71e/Bjz4KJc+YAca6Pbnql6b0THF24HZ3sOu3VtzRgwurcqKrW+yL9nMJ6O0rHqAnQx AHnSdh0j7q2NgrrMqp91lCdqivzsqJIQf3UEHc3wHVKcczCv/+QRNChPMcuNHP0vvIC+5hqdG uBUpsgMQ7C9cKO21S3xOqfy306A4bQPNWbZBeROYTXrAY/3k1zgx+H0i7aD3+o3EMojuREt/K 0wWN7TlEyIZxrU3zgc9fyELB1iIH8IbX+MEwLGFScpQRyjor0VPtud4YTs2q81b33bINlACpT OM5N0YTJa/0XebcbUZIs29T0RwzSB1SquW1EYnIilbankcXqzmlBVnORLTallwBj2Ffps4Z2j JKgB+qsKXMWrx+HUhFAmTbb1PWNFAuW9iYR2JuXX4Xf0ZXwWg+jRT3BUSWyuMrcrLKsKEY7RJ M3wwAsfl0LBD/0W8
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/hQ3PvVClmlVRzQDu3S53hpZ5jRI>
Cc: "draft-wkumari-dhc-capport.all@tools.ietf.org" <draft-wkumari-dhc-capport.all@tools.ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [secdir] Secdir review of draft-wkumari-dhc-capport-13
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Sep 2015 09:44:09 -0000

Hi Warren,

~snip~

>> The motivation of the document makes sense, namely to avoid interception of
>> traffic, and the document is an easy extension to already available
>> mechanisms (RA/DHCP). I was expecting to see a reference to Hotspot 2.0,
>> which aims to make the interaction between hotspot providers and end devices
>> more intelligent (but covers a much larger scope).
> 
> I originally had this as an editor's note:
> https://github.com/wkumari/draft-wkumari-dhc-capport/blob/de293471faef562517978b709aaca762d1d78dbe/README.md
> 
> "[ Ed note: This solution is somewhat similar / complements 802.11u /
>    WiFi Passpoint Online Sign-up, but is much simpler, easier to deploy,
>    and works on wired as well ]
> "
> 
> I spent some time looking at the Hotspot 2.0 stuff, but after slogging
> through much 4 color glossy type material it seemed that it more
> allowed you to use different reaming providers / snap a RADIUS
> connection back to another provider. I even spent some $$$ on
> purchasing a spec, which I found largely unintelligible.
> So, I decided to remove the vague / editorial note... :-)
> 
> If you happen to have any suggested text I'm happy to stick it in...

Good to hear that you took the work into account. It is fine for me if
you came up with the conclusion that it is too complex.

(Btw, the specifications are now available for download for free at
http://www.wi-fi.org/discover-wi-fi/specifications)

Ciao
Hannes