Diameter Extensible Authentication Protocol (EAP) Application
draft-ietf-aaa-eap-10
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2004-12-01
|
10 | Amy Vezza | State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza |
2004-11-23
|
10 | Amy Vezza | IESG state changed to Approved-announcement sent |
2004-11-23
|
10 | Amy Vezza | IESG has approved the document |
2004-11-23
|
10 | Amy Vezza | Closed "Approve" ballot |
2004-11-23
|
10 | Bert Wijnen | State Changes to Approved-announcement to be sent from Approved-announcement to be sent::Point Raised - writeup needed by Bert Wijnen |
2004-11-23
|
10 | Bert Wijnen | Author agrees with RFC-Editor note. |
2004-11-23
|
10 | Bert Wijnen | Status date has been changed to 2004-11-23 from 2004-11-22 |
2004-11-22
|
10 | Bert Wijnen | Well except that there was one line mangled in the doc i.e. I need (in sect 4.1.5) a s/232/2^32/ Which I have added as an … Well except that there was one line mangled in the doc i.e. I need (in sect 4.1.5) a s/232/2^32/ Which I have added as an RFC-Ed note. Chwecking with Pasi if that is indeed all. |
2004-11-22
|
10 | Bert Wijnen | New revision seems OK to AD and has included all minor comments and RFC-Editor notes (which I have now removed)> |
2004-11-22
|
10 | Bert Wijnen | Status date has been changed to 2004-11-22 from 2004-10-29 |
2004-11-18
|
10 | (System) | New version available: draft-ietf-aaa-eap-10.txt |
2004-10-29
|
10 | Bert Wijnen | Checking with author(s) and WG chairs to make sure RFC-ED notes are ok and to see if they have any others. |
2004-10-29
|
10 | Bert Wijnen | Status date has been changed to 2004-10-29 from 2004-10-21 |
2004-10-29
|
10 | (System) | Removed from agenda for telechat - 2004-10-28 |
2004-10-28
|
10 | Amy Vezza | State Changes to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation by Amy Vezza |
2004-10-28
|
10 | Thomas Narten | [Ballot Position Update] New position, No Objection, has been recorded for Thomas Narten by Thomas Narten |
2004-10-28
|
10 | Bill Fenner | [Ballot Position Update] New position, No Objection, has been recorded for Bill Fenner by Bill Fenner |
2004-10-28
|
10 | Allison Mankin | [Ballot Position Update] Position for Allison Mankin has been changed to No Objection from Undefined by Allison Mankin |
2004-10-28
|
10 | Allison Mankin | [Ballot comment] A well-prepared document. May its users honor it. (May they use redirects as much as possible :) Just one nit: the intro of … [Ballot comment] A well-prepared document. May its users honor it. (May they use redirects as much as possible :) Just one nit: the intro of DER and DEA is confusing: "The following Command Codes are defined in this section:" Command-Name Abbrev. Code Reference -------------------------------------------------------- Diameter-EAP-Request DER 268 3.1 Diameter-EAP-Answer DEA 268 3.2 Since the table then shows a single code for both, there's some surprise, only explained later by discussing the R bit being set or not. I suggest you help out the reader either by including the R bit in the table or introducing it "The following Commands are defined in this section". |
2004-10-28
|
10 | Allison Mankin | [Ballot Position Update] New position, Undefined, has been recorded for Allison Mankin by Allison Mankin |
2004-10-28
|
10 | Alex Zinin | [Ballot Position Update] New position, No Objection, has been recorded for Alex Zinin by Alex Zinin |
2004-10-28
|
10 | Harald Alvestrand | [Ballot comment] Reviewed by Mark Allman, Gen-ART His review: This one looks ready. (From a non-expert.) Per usual, I think it could have done a … [Ballot comment] Reviewed by Mark Allman, Gen-ART His review: This one looks ready. (From a non-expert.) Per usual, I think it could have done a bit better job of sketching the problem being solved. But, it's OK. If the doc does get rev-ed, I'd suggest: * better problem description (nothing huge, but give non-experts a general feel) * spell out AVP and NASREQ the first time you use them (and, tell me what they are!) * reference PAP/CHAP |
2004-10-28
|
10 | Harald Alvestrand | [Ballot Position Update] New position, No Objection, has been recorded for Harald Alvestrand by Harald Alvestrand |
2004-10-28
|
10 | Jon Peterson | [Ballot Position Update] New position, No Objection, has been recorded for Jon Peterson by Jon Peterson |
2004-10-27
|
10 | David Kessens | [Ballot Position Update] New position, No Objection, has been recorded for David Kessens by David Kessens |
2004-10-27
|
10 | Russ Housley | [Ballot comment] Comments are based on SecDir review by Don Eastlake. In Section 2.1, at the top of page 5: I guess "bidding down … [Ballot comment] Comments are based on SecDir review by Don Eastlake. In Section 2.1, at the top of page 5: I guess "bidding down attack" is an okay description, but this is more commonly called a "downgrade attack." In Section 2.3, 1st paragraph: Both "Code (2)" and "Code (1)" appear. All other cases of parenthesized single digit Arabic numerals in this document are lengths in octets. Here I believe that two different values are being discussed. In Section 2.4: s/an a/a/ In Section 2.7, last paragraph: s/more more/more/ In Section 8.1, 3rd paragraph, the ending words ", even if redirects are used" seem not just superfluous but slightly confusing. In Section 8.1, in first sentence of 4th paragraph, suggest replacing "(denial-of-service is, of course, possible)" with "except for denial-of-service attacks." In Section 8.4, 1st paragraph: s/EAP-Session-Key/EAP-Master-Session-Key/ In the References, [IEEE-802.11i], this is no longer a "work in progress." It received final approval on 24 June 2004. |
2004-10-27
|
10 | Russ Housley | [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley by Russ Housley |
2004-10-27
|
10 | Margaret Cullen | [Ballot Position Update] New position, No Objection, has been recorded for Margaret Wasserman by Margaret Wasserman |
2004-10-26
|
10 | Steven Bellovin | [Ballot Position Update] New position, No Objection, has been recorded for Steve Bellovin by Steve Bellovin |
2004-10-25
|
10 | Ted Hardie | [Ballot Position Update] Position for Ted Hardie has been changed to No Objection from Undefined by Ted Hardie |
2004-10-25
|
10 | Ted Hardie | [Ballot comment] In 2.8.2, the documents says: This situation can be difficult to avoid when Diameter proxy agents make authorization decisions (that is, … [Ballot comment] In 2.8.2, the documents says: This situation can be difficult to avoid when Diameter proxy agents make authorization decisions (that is, proxies can change the Result-Code AVP sent by the home server). Since the responsibility for avoiding conflicts lies with the Diameter server, the NAS MUST NOT "manufacture" EAP result packets in order to correct contradictory messages that it receives. This behavior, originally mandated within [IEEE-802.1X], will be deprecated in the future. Not a bid deal, but I think this document deprecates the behavior, so the last line reads oddly. Proposed text: This behavior is deprecated. Note that [IEEE-802.1X] originally mandated this in its authentication and key management standards, but an update is expected. |
2004-10-25
|
10 | Ted Hardie | [Ballot Position Update] New position, Undefined, has been recorded for Ted Hardie by Ted Hardie |
2004-10-25
|
10 | Scott Hollenbeck | [Ballot Position Update] New position, No Objection, has been recorded for Scott Hollenbeck by Scott Hollenbeck |
2004-10-21
|
10 | Bert Wijnen | Placed on agenda for telechat - 2004-10-28 by Bert Wijnen |
2004-10-21
|
10 | Bert Wijnen | State Changes to IESG Evaluation from Waiting for Writeup by Bert Wijnen |
2004-10-21
|
10 | Bert Wijnen | Status date has been changed to 2004-10-21 from 2004-09-19 |
2004-10-21
|
10 | Bert Wijnen | [Ballot Position Update] New position, Yes, has been recorded for Bert Wijnen |
2004-10-21
|
10 | Bert Wijnen | Ballot has been issued by Bert Wijnen |
2004-10-21
|
10 | Bert Wijnen | Created "Approve" ballot |
2004-10-20
|
10 | (System) | State has been changed to Waiting for Writeup from In Last Call by system |
2004-10-19
|
10 | Michelle Cotton | IANA LAST CALL COMMENTS: We understand this document does not create any new registries. Upon approval of this document, the IANA will register the following: … IANA LAST CALL COMMENTS: We understand this document does not create any new registries. Upon approval of this document, the IANA will register the following: 1 Diameter command from the Command Code namespace 4 AVPs from the AVP Code namespace 1 Diameter application from the Application Identifier namespace All the above registrations are to go in . 1 AVP (attribute) whose AVP Code (Attribute Type) is to be allocated from the Attribute Type namespace . |
2004-10-06
|
10 | Amy Vezza | Last call sent |
2004-10-06
|
10 | Amy Vezza | State Changes to In Last Call from Last Call Requested by Amy Vezza |
2004-10-06
|
10 | Bert Wijnen | State Changes to Last Call Requested from AD Evaluation by Bert Wijnen |
2004-10-06
|
10 | Bert Wijnen | Last Call was requested by Bert Wijnen |
2004-10-06
|
10 | (System) | Ballot writeup text was added |
2004-10-06
|
10 | (System) | Last call text was added |
2004-10-06
|
10 | (System) | Ballot approval text was added |
2004-09-19
|
10 | Bert Wijnen | Status date has been changed to 2004-09-19 from |
2004-09-19
|
10 | Bert Wijnen | State Changes to AD Evaluation from Publication Requested by Bert Wijnen |
2004-08-24
|
10 | Dinara Suleymanova | State Changes to Publication Requested from AD is watching::AD Followup by Dinara Suleymanova |
2004-08-24
|
10 | Dinara Suleymanova | Intended Status has been changed to Proposed Standard from Informational |
2004-08-13
|
09 | (System) | New version available: draft-ietf-aaa-eap-09.txt |
2004-06-24
|
08 | (System) | New version available: draft-ietf-aaa-eap-08.txt |
2004-06-17
|
10 | Bert Wijnen | -----Original Message----- From: Bernard Aboba [mailto:aboba@internaut.com] Sent: woensdag 16 juni 2004 02:55 To: iesg@ietf.org Subject: Comment on Diameter NASREQ, EAP, MIPv4 (fwd) Yoshi … -----Original Message----- From: Bernard Aboba [mailto:aboba@internaut.com] Sent: woensdag 16 juni 2004 02:55 To: iesg@ietf.org Subject: Comment on Diameter NASREQ, EAP, MIPv4 (fwd) Yoshi Ohba has found an error that exists within all several Diameter Application drafts -- Diameter NASREQ, EAP and MIPv4. This concerns the use of Application-IDs in those documents. Based on the Application-ID guidelines of RFC 3588, the Diameter NASREQ, EAP and MIPv4 documents are not permitted to allocate new Application-IDs because no new mandatory AVPs are defined in those documents. Re-using Diameter Base commands will enable Diameter agents (such as Diameter/RADIUS gateways) to operate across a range of applications with no code changes. Diameter EAP & NASREQ use ACR/ACA, RAR/RAA, STR/STA and ASR/ASA commands. Diameter MIPv4 uses ACR/ACA, STR/STA and ASR/ASA commands. |
2004-06-15
|
07 | (System) | New version available: draft-ietf-aaa-eap-07.txt |
2004-06-01
|
10 | (System) | Sub state has been changed to AD Follow up from New Id Needed |
2004-06-01
|
06 | (System) | New version available: draft-ietf-aaa-eap-06.txt |
2004-04-05
|
05 | (System) | New version available: draft-ietf-aaa-eap-05.txt |
2004-03-24
|
10 | Bert Wijnen | Shepherding AD has been changed to Bert Wijnen from Randy Bush |
2004-03-24
|
10 | Bert Wijnen | State Change Notice email list have been change to , , from , |
2004-02-17
|
04 | (System) | New version available: draft-ietf-aaa-eap-04.txt |
2003-10-28
|
03 | (System) | New version available: draft-ietf-aaa-eap-03.txt |
2003-07-02
|
02 | (System) | New version available: draft-ietf-aaa-eap-02.txt |
2003-03-07
|
01 | (System) | New version available: draft-ietf-aaa-eap-01.txt |
2003-02-16
|
10 | Randy Bush | Date: Sat, 15 Feb 2003 12:08:07 -0800 (PST) From: Bernard Aboba To: Randy Bush cc: Bert Wijnen , Subject: Re: draft-ietf-aaa-eap-00.txt Glen Zorn and Tom … Date: Sat, 15 Feb 2003 12:08:07 -0800 (PST) From: Bernard Aboba To: Randy Bush cc: Bert Wijnen , Subject: Re: draft-ietf-aaa-eap-00.txt Glen Zorn and Tom Hiller ripped this from the rib of NASREQ-09, but it hasn't been revised since June 2002. I've sent several inquiries to Tom Hiller (first author) asking when it will be revised, but haven't heard back. So at the moment I'm not optimistic about movement on it. Frankly, I'm not sure what's holding it up. Most of the text is a Diameter version of RFC 2869bis, so in the hands of an good editor (know any volunteers?) it shouldn't take more than a few months to get ready for AAA WG last call, assuming that the keying attributes were put in a separate document. Not all uses of EAP require keying, so this might be possible. The keying attributes have a dependency on the EAP Keying framework which won't be ready until June 2003, and is likely to slip. We've also found a number of vulnerabilities relating to keying and some careful review would be needed to make sure they are fixed. On top of that, the keying attributes are also the most likely to be wrapped via CMS, so you have to design them so they will work well in that service (like making sure that the CMS package has enough "liveness" to detect cut and past attack, provides info on the key usage parameters and lifetimes, etc. Designing the CMS package is the hardest part of finishing Diameter CMS; after all, CMS itself is done. So in practice, I think that keying attributes depend on CMS, even though there may not be a formal dependency there. |
2003-02-16
|
10 | Randy Bush | State Changes to AD is watching :: Revised ID Needed from AD is watching by Bush, Randy |
2003-02-15
|
10 | Randy Bush | State Changes to AD is watching from AD Evaluation by Bush, Randy |
2002-12-07
|
10 | Randy Bush | changed to AD is watching per baboba |
2002-12-07
|
10 | Randy Bush | State Changes to AD Evaluation from Publication Requested by Bush, Randy |
2002-11-06
|
10 | Randy Bush | baboba requested randy watch this one |
2002-11-06
|
10 | Randy Bush | Draft Added by Bush, Randy |
2002-06-24
|
00 | (System) | New version available: draft-ietf-aaa-eap-00.txt |