Last Call Review of draft-ietf-radext-radiusv11-08
review-ietf-radext-radiusv11-08-genart-lc-holmberg-2024-06-27-00
Request | Review of | draft-ietf-radext-radiusv11 |
---|---|---|
Requested revision | No specific revision (document currently at 11) | |
Type | Last Call Review | |
Team | General Area Review Team (Gen-ART) (genart) | |
Deadline | 2024-06-26 | |
Requested | 2024-06-12 | |
Authors | Alan DeKok | |
I-D last updated | 2024-06-27 | |
Completed reviews |
Genart Last Call review of -08
by Christer Holmberg
(diff)
Artart Last Call review of -07 by Claudio Allocchio (diff) Secdir Last Call review of -08 by Barry Leiba (diff) Opsdir Last Call review of -10 by Susan Hares (diff) Secdir Telechat review of -10 by Barry Leiba (diff) |
|
Assignment | Reviewer | Christer Holmberg |
State | Completed | |
Request | Last Call review on draft-ietf-radext-radiusv11 by General Area Review Team (Gen-ART) Assigned | |
Posted at | https://mailarchive.ietf.org/arch/msg/gen-art/VNZsI4wNv_5vlHNn2vZdBFDH9mA | |
Reviewed revision | 08 (document currently at 11) | |
Result | Ready w/issues | |
Completed | 2024-06-27 |
review-ietf-radext-radiusv11-08-genart-lc-holmberg-2024-06-27-00
I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://wiki.ietf.org/en/group/gen/GenArtFAQ>. Document: draft-ietf-radext-radiusv11-08 Reviewer: Christer Holmberg Review Date: 2024-06-27 IETF LC End Date: 2024-06-26 IESG Telechat date: Not scheduled for a telechat Summary: Technically I have no comments on the specification, and I think the text is fairly easy to read understand. However, it is unclear to me how this impacts future work on RADIUS etc, as indicated by the issues/questions below. Major issues: Q_MAJ_01: Section 7.3 says that future standards can "inherit" the RADIUS/1.1 procedures, but they do not need to mention RADIUS/1.1 explicitly. What exactly is meant by "inherit"? If RADIUS/1.1 is not mentioned, does that mean that the future standards need to copy/paste the RADIUS/1.1 procedures? ---- Q_MAJ_02: Section 7.3 specifies rules for defining RADIUS extensions. Is this specification (especially since it is Experimental) the right place to define such generic RADIUS extension procedures? Can the WG e.g. reject future extension proposals purely because they do not comply to this specification? ---- Q_MAJ_03: Section 9 says: "All the insecure uses of RADIUS have been removed". I don't think that is true, as no changes are done to RADIUS/UDP and RADIUS/TCP, i.e. they are still as unsecure as before. Minor issues: Q_MIN_01: It is stated that RADIUS/1.1 is not a new protocol, but rather a transport profile. In my opinion it is more than a transport profile, but I will respect the decision of the community. Nits/editorial comments: Q_ED_1: I think the Abstract is too long. Any explanations, clarifications and details should be removed.