[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RADIUS crypto-agility straw-man proposal

To: "David B. Nelson" <d.b.nelson@comcast.net>
Subject: RADIUS crypto-agility straw-man proposal
From: Alan DeKok <aland@nitros9.org>
Date: Mon, 26 Feb 2007 14:19:23 +0100
Cc: 'radext mailing list' <radiusext@ops.ietf.org>
In-reply-to: <001b01c756d8$64a83b60$6401a8c0@NEWTON603>
References: <001b01c756d8$64a83b60$6401a8c0@NEWTON603>
User-agent: Thunderbird 1.5.0.9 (Windows/20061207)

  I do not have significant comments on the straw-man set of
requirements.  Therefore, I have a straw-man proposal.

http://deployingradius.com/ietf/draft-dekok-radext-dtls-00.txt

  It was just submitted to the I-D editor, so it should make the -00
deadline.

  The content is a little rough, but the general idea should be
adequately covered.  In short, "RADIUS + DTLS" == "better security".

  Other groups are using DTLS for securing pre-existing UDP protocols.
One draft (draft-jennings-sip-dtls-00.txt) is about 3 pages long, and
says little other than "use DTLS".  That would appear to indicate that
it may be that easy to add DTLS support to RADIUS.

  Alan DeKok.


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Thoughts on Requirements for RADIUS crypto-agility
  - From: "David B. Nelson" <d.b.nelson@comcast.net>

Prev by Date: Re: Thoughts on Requirements for RADIUS crypto-agility
Next by Date: Re: Some important IETF-68 deadlines and request for agenda items
Previous by thread: RE: Thoughts on Requirements for RADIUS crypto-agility
Next by thread: Re: Thoughts on Requirements for RADIUS crypto-agility
Index(es):
- Date
- Thread