[Nea] REQ: Section 5, why is this here?

[Alan DeKok <aland at deployingradius.com>]

  I think the document is out of order.  The reference model is
described BEFORE the requirements in Section 7.  And the requirements in
Section 7 use the terminology and model from Section 5.

  My understanding of a requirements document is that it would detail
requirements, rather than a detailed model.  The charter does have a
limited architecture description, but it is significantly simpler than
what is in Section 5.

  In addition, the charter says:

   The NEA Requirements document will include a problem statement,
   definition of terms, requirements for the PA and PB protocols, and an
   overall security analysis.

  I read this to mean that the requirements document should list the
requirements to solve the problem statement, and not include a detailed
solution.  Instead, the requirements document lists the requirements for
implementing a particular solution to the problem statement.

  In other words, the problem statement is about network administrators,
machines, and end users.  I would expect that the document cover at
least requirements that those parties have.  I see no such list of
requirements in the document.  We therefore have no idea whether or not
the model described in section 5 actually satisfies the problem statement.

  Alan DeKok.
--
  http://deployingradius.com       - The web site of the book
  http://deployingradius.com/blog/ - The blog

_______________________________________________
Nea mailing list
Nea at ietf.org
https://www1.ietf.org/mailman/listinfo/nea