[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection

To: radiusext@ops.ietf.org
Subject: RE: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
From: "Bernard Aboba" <bernard_aboba@hotmail.com>
Date: Wed, 21 Mar 2007 14:25:48 -0700
Bcc:
In-reply-to: <BAY117-F20959600BF8C573A3C791D93740@phx.gbl>

RADIUS clients implementing this specification MUST be capable of
detecting a duplicate request if it has the same source IP
address, source UDP port and Identifier within a short span of time.
On RADIUS clients that support the Event-Timestamp Attribute for replayprotection, the time window used for duplicate detection MUST be the sameas the window used to detect stale Event-Timestamp Attributes.

In looking at the original text, it would appear that support forEvent-Timestamp based replay detection is required on RADIUS clientsimplementing RFC 3576; it is support on servers that is optional.Therefore, the second sentence above should probably be:


"The time windows used for duplicate detection MUST be..."



--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
  - From: "Bernard Aboba" <bernard_aboba@hotmail.com>

Prev by Date: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
Next by Date: RE: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
Previous by thread: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
Next by thread: RE: Proposed Resolution of Issue 223: Event-Timestamp and Duplicate Detection
Index(es):
- Date
- Thread