[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[HOKEY] [Technical Errata Reported] RFC5296 (1825)

To: vidyan at qualcomm.com, ldondeti at qualcomm.com, tim.polk at nist.gov, pasi.eronen at nokia.com, gwz at net-zen.net, tena at huawei.com
Subject: [HOKEY] [Technical Errata Reported] RFC5296 (1825)
From: RFC Errata System <rfc-editor at rfc-editor.org>
Date: Mon, 10 Aug 2009 17:16:07 -0700 (PDT)
Cc: hokey at ietf.org, rfc-editor at rfc-editor.org
Delivered-to: hokey at core3.amsl.com
List-archive: <http://www.ietf.org/mail-archive/web/hokey>
List-help: <mailto:hokey-request@ietf.org?subject=help>
List-id: HOKEY WG Mailing List <hokey.ietf.org>
List-post: <mailto:hokey@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>

The following errata report has been submitted for RFC5296,
"EAP Extensions for EAP Re-authentication Protocol (ERP)".

--------------------------------------
You may review the report below and at:
http://www.rfc-editor.org/errata_search.php?rfc=5296&eid=1825

--------------------------------------
Type: Technical
Reported by: Glen Zorn <gwz at net-zen.net>

Section: 5.1

Original Text
-------------
We identify two types of bootstrapping for ERP: explicit and implicit
bootstrapping. In implicit bootstrapping, the local ER server SHOULD
include its domain name and SHOULD request the DSRK from the home AAA
server during the initial EAP exchange, in the AAA message
encapsulating the first EAP Response message sent by the peer.

Corrected Text
--------------
We identify two types of bootstrapping for ERP: explicit and implicit
bootstrapping. In implicit bootstrapping, the local AAA client or agent
SHOULD include its domain name and SHOULD request the DSRK from the home AAA
server in the AAA message encapsulating the first EAP Response message sent
by the peer during the initial EAP exchange.

Notes
-----
The local ER server is an ERP entity, incapable of inserting anything into a AAA message; the ER server's purpose is to provide reauthentication services, not to edit AAA messages. Furthermore, the original text requires that the ER server unnecessarily insert itself in the path of EAP messages, slowing the initial authentication.

Instructions:
-------------
This errata is currently posted as "Reported". If necessary, please
use "Reply All" to discuss whether it should be verified or
rejected. When a decision is reached, the verifying party (IESG)
can log in to change the status and edit the report, if necessary.

--------------------------------------
RFC5296 (draft-ietf-hokey-erx-14)
--------------------------------------
Title : EAP Extensions for EAP Re-authentication Protocol (ERP)
Publication Date : August 2008
Author(s) : V. Narayanan, L. Dondeti
Category : PROPOSED STANDARD
Source : Handover Keying
Area : Security
Stream : IETF
Verifying Party : IESG

Prev by Date: [HOKEY] test
Next by Date: [HOKEY] draft of Stockholm hokey meeting minutes available
Previous by thread: [HOKEY] testing
Next by thread: [HOKEY] draft of Stockholm hokey meeting minutes available
Index(es):
- Date
- Thread