[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Issue: RADSEC and DTLS docs

To: Alan DeKok <aland@deployingradius.com>
Subject: RE: Issue: RADSEC and DTLS docs
From: Bernard Aboba <bernard_aboba@hotmail.com>
Date: Sun, 29 Mar 2009 08:10:59 -0700
Cc: "radiusext@ops.ietf.org" <radiusext@ops.ietf.org>
In-reply-to: <49CE4392.8050903@deployingradius.com>
References: <AC1CFD94F59A264488DC2BEC3E890DE507B3332D@xmb-sjc-225.amer.cisco.com> <49CE4392.8050903@deployingradius.com>

> I'll rev the DTLS document soon. We can then see how much of it
> simply references radsec. If the DTLS-specific portions are small, it
> may be good to add them to the radsec document.

Even if the DTLS-specific portions are small, there is still a "compliance" issue.

That is, if two vendors say "I implement RADSEC" -- what would it mean, if one could be doing RADIUS over TLS/TCP and another, RADIUS over DTLS/UDP?

Whereas if there are two separate documents, and someone says "I implement RADIUS over DTLS", now we know what transport they are using.

There are similar concerns about RADIUS over TCP, but we discussed indicating in the document that this is only intended for use with RADSEC.

Follow-Ups:
- Re: Issue: RADSEC and DTLS docs
  - From: Klaas Wierenga <klaas@wierenga.net>

References:
- Issue: RADSEC and DTLS docs
  - From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
- Re: Issue: RADSEC and DTLS docs
  - From: Alan DeKok <aland@deployingradius.com>

Prev by Date: Re: Issue: RADSEC and DTLS docs
Next by Date: Re: Issue: RADSEC and DTLS docs
Previous by thread: Re: Issue: RADSEC and DTLS docs
Next by thread: Re: Issue: RADSEC and DTLS docs
Index(es):
- Date
- Thread