[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Continued discussion of RADIUS Crypto-Agility

To: leifj@it.su.se, stefan.winter@restena.lu
Subject: Re: Continued discussion of RADIUS Crypto-Agility
From: "Bernard Aboba" <bernard_aboba@hotmail.com>
Date: Wed, 08 Aug 2007 17:12:03 -0700
Bcc:
Cc: radiusext@ops.ietf.org
In-reply-to: <46B9D1BC.1090108@it.su.se>

The wg should (imho) explicitly state if the issue is getting rid of MD5
or getting rid of MD5 at the same time as a whole bunch of other
things are done. That will probably make this process go a whole lot
easier.

David has posted the set of requirements that a solution needs to meet.Beyond those, the WG can also take into account other desirable securitycharacteristics in making a determination.

However, in doing so, I would warn against feature creep. RADIUS hassucceeded largely because of its simplicity and modest footprint. So thegoal is to address the crypto-agility issue with a minimum of unrelatedchanges.




--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: Continued discussion of RADIUS Crypto-Agility
  - From: Leif Johansson <leifj@it.su.se>

References:
- Re: Continued discussion of RADIUS Crypto-Agility
  - From: Leif Johansson <leifj@it.su.se>

Prev by Date: Re: Continued discussion of RADIUS Crypto-Agility
Next by Date: Re: Continued discussion of RADIUS Crypto-Agility
Previous by thread: Re: Continued discussion of RADIUS Crypto-Agility
Next by thread: Re: Continued discussion of RADIUS Crypto-Agility
Index(es):
- Date
- Thread