Re: AW: AW: Privacy (Was: Re: NAI decoration: User Identity issues)

[Bernard Aboba <aboba@internaut.com>]

> "privacy-protected-identity", which - when present - is used instead of the
> NAI for all kinds of purposes normally the NAI is used for, including
> billing, re-authorization, abuse tracking etc.

Can't that function be handled by sending a User-Name attribute in the
Access-Accept?  Why would another attribute be needed?

> seems to be federated identity management (with privacy).  Is anybody seeing
> a different application for this new attribute ?

It seems like everyone is seeing a different application for the attribute
-- and that is why it is so hard to come to agreement on the problem
statement.

The proposal on the table only uses the new attribute for accounting, not
for authentication.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>