The Group Domain of Interpretation
RFC 6407
Yes
No Objection
Note: This ballot was opened for revision 11 and is now closed.
(Sean Turner; former steering group member) Yes
(Adrian Farrel; former steering group member) (was Discuss) No Objection
(Gonzalo Camarillo; former steering group member) No Objection
The draft says it describes an "updated" version of GDOI. However, the draft seems to obsolete the previous spec, not to update it. In any case, this has already been captured in Adrian's discuss.
(Peter Saint-Andre; former steering group member) No Objection
(Robert Sparks; former steering group member) No Objection
(Ron Bonica; former steering group member) No Objection
(Russ Housley; former steering group member) No Objection
(Stephen Farrell; former steering group member) No Objection
(1) Shouldn't DES and other algorithms be deprecated more obviously? E.g. 5.3.2.1 doesn't say not to do this. Same question for MD5 in SIG_HASH_MD5 etc. (2) Has anything been learned about authorizing GKCS's since rfc 3547? If so, wouldn't it be good to include something about that, even if it doesn't provide a fool-proof way to authorize a host as a GKCS? (Text like that would go nicely in 3.1 I think.)
(Stewart Bryant; former steering group member) No Objection
(Wesley Eddy; former steering group member) No Objection