Re: [Emu] Issue #20: Method Meta-Data

To: "Joseph Salowey (jsalowey)" <jsalowey at cisco.com>, <emu at ietf.org>
Subject: Re: [Emu] Issue #20: Method Meta-Data
From: "Joseph Salowey (jsalowey)" <jsalowey at cisco.com>
Date: Tue, 22 Sep 2009 15:53:09 -0700
Authentication-results: sj-dkim-2; header.From=jsalowey at cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; );
Delivered-to: emu at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; l=2162; t=1253659991; x=1254523991; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=jsalowey at cisco.com; z=From:=20=22Joseph=20Salowey=20(jsalowey)=22=20<jsalowey at ci sco.com> |Subject:=20RE=3A=20[Emu]=20Issue=20#20=3A=20Method=20Meta- Data |Sender:=20; bh=7GuZWRyakqPdD3vn0qnspOmuUgS+iCe3Ceq2dldul5w=; b=LJF/6QxOdpRAc7ltmw0L6QVIi+Re0FS+O3KhfmjhoHRJK8tfmIVSwNJcTj AovxuZI1CcxbljiUizLqfxDWycJGsuPG43ofjALAwd7zLnpa09mkx7z+SoeC rYfJcns7L+;
In-reply-to: <AC1CFD94F59A264488DC2BEC3E890DE50883CEF1 at xmb-sjc-225.amer.cisco.com>
List-archive: <http://www.ietf.org/mail-archive/web/emu>
List-help: <mailto:emu-request@ietf.org?subject=help>
List-id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-post: <mailto:emu@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
References: <AC1CFD94F59A264488DC2BEC3E890DE50883CEF1 at xmb-sjc-225.amer.cisco.com>
Thread-index: AcoWzxG4GdSmFqmjRFqXehvVx1UUbAAAB7WwCUIL4QA=
Thread-topic: [Emu] Issue #20: Method Meta-Data

Any objection to resolving this by changing the MUSTs to SHOULDs?

Thanks,

Joe 

> -----Original Message-----
> From: emu-bounces at ietf.org [mailto:emu-bounces at ietf.org] On 
> Behalf Of Joseph Salowey (jsalowey)
> Sent: Thursday, August 06, 2009 12:51 PM
> To: emu at ietf.org
> Subject: [Emu] Issue #20: Method Meta-Data
> 
> 
> #20: Method Meta-Data
> 
>  > Section 4.5.3
>  >
>  > "   The password authentication exchange MUST support additional
>  >    associated meta-data which can be used to indicate whether the
>  >    authentication is for a user or a machine.  This allows the EAP
>  >    server and peer to request and negotiate authentication
>  > specifically
>  >    for a user or machine.  This is useful in the case of
>  > multiple inner
>  >    authentications where the user and machine both need to be
>  >    authenticated.
>  > "
>  > Why is it necessary to support meta-data to indicate 
> whether  > authentication is for a user or machine?  Few 
> authentication  > protocols support this today and don't seem 
> to miss it.  For  > example, does Kerberos or PKI distinguish 
> explicitly between  > user and machine credentials?
>  >
> 
>  and
> 
>  > Section 4.6.5
>  >
>  > "   The tunnel method MUST allow for the communication of
>  > additional data
>  >    associated with an EAP method.  This can be used to
>  > indicate whether
>  >    the authentication is for a user or a machine.  This allows the
> EAP
>  >    server and peer to request and negotiate authentication
>  > specifically
>  >    for a user or machine.  This is useful in the case of
>  > multiple inner
>  >    EAP authentications where the user and machine both need to be
>  >    authenticated.
>  > "
>  > Again, why is meta-data necessary?  Can't the basic need 
> for  > machine + user auth be met without this?
>  >
> 
> --
> Ticket URL: <http://wiki.tools.ietf.org/wg/emu/trac/ticket/20>
> emu <http://tools.ietf.org/wg/emu/>
> 
> _______________________________________________
> Emu mailing list
> Emu at ietf.org
> https://www.ietf.org/mailman/listinfo/emu
>

References:
- [Emu] Issue #20: Method Meta-Data
  - From: Joseph Salowey (jsalowey)

Prev by Date: Re: [Emu] Issue #23: Tunnel Protection requirements
Next by Date: [Emu] Revised sections for Issue #18 (Internationalization)
Previous by thread: [Emu] Issue #20: Method Meta-Data
Next by thread: [Emu] Issue #21: Mandatory Vs. Optional
Index(es):
- Date
- Thread

Re: [Emu] Issue #20: Method Meta-Data

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.