[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt

To: Glen Zorn <glenzorn@comcast.net>
Subject: Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
From: Alan DeKok <aland@deployingradius.com>
Date: Mon, 06 Jul 2009 13:44:01 +0200
Cc: 'Stefan Winter' <stefan.winter@restena.lu>, radiusext@ops.ietf.org
In-reply-to: <025f01c9fe24$edfba6e0$c9f2f4a0$@net>
References: <20090703161501.9F78F3A6C6A@core3.amsl.com> <4A4E31EA.8000209@deployingradius.com> <4A518D37.2090107@restena.lu> <01ca01c9fe04$d0771840$716548c0$@net> <4A51B1CD.1080502@deployingradius.com> <022801c9fe17$cdbb31f0$693195d0$@net> <4A51BF16.4010906@deployingradius.com> <025f01c9fe24$edfba6e0$c9f2f4a0$@net>
User-agent: Thunderbird 2.0.0.22 (Macintosh/20090605)

Glen Zorn wrote:
> Of course, what was I thinking?  Setting up a CA, issuing client and server
> certs and configuring secure DNS is _so_ much simpler than laboriously
> typing an IP address.  This simplicity must explain the amazing popularity
> (indeed, true ubiquity) of the PKI today.  

  It's done for EAP methods.

  And the choice is up to the operational people.  Doing certs for
client/server authentication is a higher up-front cost than IP/secret.
However, the ongoing maintenance costs can be lower.

  Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Dynamic discovery: applicability questions
  - From: Bernard Aboba <bernard_aboba@hotmail.com>

References:
- I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: Internet-Drafts@ietf.org
- Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: Alan DeKok <aland@deployingradius.com>
- Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: Stefan Winter <stefan.winter@restena.lu>
- RE: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: Alan DeKok <aland@deployingradius.com>
- RE: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: Alan DeKok <aland@deployingradius.com>
- RE: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
  - From: "Glen Zorn" <glenzorn@comcast.net>

Prev by Date: RE: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
Next by Date: Dynamic discovery: applicability questions
Previous by thread: RE: I-D Action:draft-ietf-radext-dynamic-discovery-00.txt
Next by thread: Dynamic discovery: applicability questions
Index(es):
- Date
- Thread