Understanding Apple's Back to My Mac (BTMM) Service
RFC 6281

Note: This ballot was opened for revision 05 and is now closed.

(Jari Arkko) Yes

(Lars Eggert) (was Discuss, Yes) Yes

(Ron Bonica) No Objection

(Stewart Bryant) No Objection

(Adrian Farrel) No Objection

(David Harrington) No Objection

(Russ Housley) No Objection

Comment (2011-03-17)
No email
send info
  The Gen-ART Review by Ben Campbell on 15-Mar-2011 includes a
  an issue.  I'd like to see this resolved, but I am not blocking
  the document from approval.

  TCP is mentioned section 5 and in 6.1, but BTTM is otherwise stated to
  run over UDP. After reading the updated draft and the related email
  thread, along with the change to the SRV record discussion to remove
  the mention of "_tcp", I think it is now reasonably clear that BTTM
  uses IPSec and UDP tunneling to carry TCP connections between
  applications.

  However, it seems that any IP-based transport protocol could be used.
  Is correct?  If not, please include an explanation.

(Peter Saint-Andre) No Objection

Comment (2011-03-16)
No email
send info
In Section 3 we find:

   BTMM uses "_udp" to tunnel packets between the
   two ends to achieve NAT traversal.

I think you mean "UDP", not "_udp".

(Robert Sparks) No Objection

(Sean Turner) No Objection

Comment (2011-03-16)
No email
send info
#1) In Sec 7.1, I had trouble parsing the following:

   When the user first signs in to MobileMe on a host, it automatically
   receives from KDC a digital certificate and private key for "Back to
   My Mac Encryption Certificate".