RADIUS Extension for Digest Authentication
draft-ietf-radext-rfc4590bis-02
Yes
No Objection
Note: This ballot was opened for revision 02 and is now closed.
Lars Eggert No Objection
(Dan Romascanu; former steering group member) Yes
(Jari Arkko; former steering group member) Yes
I verified diffs to RFC 4590 too. Everything looks good.
(Chris Newman; former steering group member) No Objection
Might want to make sure IANA knows to update the RADIUS registry entries for these parameters to refer to the new RFC when it's published. The IANA considerations section didn't say that explicitly. I question whether RADIUS over IPsec will deploy as widely as HTTPS/SIPS has. This makes me wonder if IPsec is an adequate answer to protect these exchanges, especially given a simple passive eavesdrop of H(A1) leaves that user's account completely compromised in that realm.
(Cullen Jennings; former steering group member) (was Discuss, No Objection) No Objection
(David Ward; former steering group member) No Objection
(Jon Peterson; former steering group member) No Objection
(Lisa Dusseault; former steering group member) No Objection
(Magnus Westerlund; former steering group member) No Objection
(Mark Townsley; former steering group member) No Objection
(Ron Bonica; former steering group member) No Objection
(Ross Callon; former steering group member) No Objection
(Sam Hartman; former steering group member) No Objection
(Tim Polk; former steering group member) No Objection