Re: Fwd: [Nea] Re: use of a design team to develop requirements
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Fwd: [Nea] Re: use of a design team to develop requirements

On 12/13/06, Alan DeKok <aland at deployingradius.com> wrote: 
Mike Fratto wrote:
> I think I can safely say that the purpose of NAC is NOT to impose
> anything on a host. The purpose of NAC is to allow a network owner to
> control access to it's resources, which is well within the network
> owner's right. Nothing more and nothing less. If a host is not upto
> snuff and the network owner requires certain actions to take place,
> the host can *choose* not to participate in the network. There is no
> forcing anything.

  So you're saying that the NEA protocol is informative:

a) client informs server what it has
b) server informs client what to do in order to gain network access
c) client does it, and is on the net, OR doesn't, and is kicked off.


Ok, I guess I will play the role of charter police. As it stands, the
NEA is concerned with a). Not b) (that falls to remediation) and not
c). Please, correct me if I am wrong.


  Since you said above that NEA isn't about open-ended queries, I don't
think there's a need for more discussion on that point.


I did not say that. Read the thread again. In fact, I am completely
convinced that the threat that NEA, or any NAC framework, will be used
for open ended queries is groundless.

_______________________________________________
Nea mailing list
Nea at ietf.org
https://www1.ietf.org/mailman/listinfo/nea



Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.