[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: RADEXT WG re-charter

To: <radiusext@ops.ietf.org>
Subject: RE: RADEXT WG re-charter
From: "David B. Nelson" <dnelson@elbrysnetworks.com>
Date: Mon, 14 Apr 2008 10:47:57 -0400
Cc: "'Joseph Salowey $jsalowey$'" <jsalowey@cisco.com>, <Bernard_Aboba@hotmail.com>, "'Glen Zorn'" <glenzorn@comcast.net>
In-reply-to: <001801c89e36$38856cf0$33da787c@arubanetworks.com>
Organization: Elbrys Networks, Inc.
References: <BLU137-W48C2DDC500B37865CBBD9F93F50@phx.gbl> <AC1CFD94F59A264488DC2BEC3E890DE50598D1E3@xmb-sjc-225.amer.cisco.com> <BLU137-DS39DAA210AA10B0CDB138F93EC0@phx.gbl> <AC1CFD94F59A264488DC2BEC3E890DE505A01761@xmb-sjc-225.amer.cisco.com> <010001c89c27$8a6ff5f0$1f0a0a0a@xpsuperdvd2> <001801c89e36$38856cf0$33da787c@arubanetworks.com>

Glen Zorn writes...

> There was indeed discussion, but mostly in the form of various
> assertions by the radext Chairs that this would be a good idea;

That much is largely true.

>... I don't recall anything like consensus around this topic.

Unless I much mistake the poll questions and results that Charles
facilitated during the HOKEY meeting, there was consensus in the room.  Of
course, that is subject to consensus on the list.  I'm also aware that you
think this it not a good idea.

> I guess, then, that "gaining FIPS certification" is an unsatisfactory
> answer, since that was the one I (among others) gave.  So what would
> be a satisfactory answer?

Well, "gaining FIPS certification" for a product release is likely a very
fine thing indeed.  I guess the question is whether the only way to do that
is to use the AES key-wrap as described in draft-zorn-radius-keywrap-13.txt,
or whether another NIST-approved algorithm, designed for bulk data
encryption might also be used?  In the latter case we solve the more general
problem, without requiring separate attribute formats for keys and general
purpose data.



--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- RE: RADEXT WG re-charter
  - From: "Glen Zorn" <glenzorn@comcast.net>

References:
- RADEXT WG re-charter
  - From: Bernard Aboba <bernard_aboba@hotmail.com>
- RE: RADEXT WG re-charter
  - From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
- Re: RADEXT WG re-charter
  - From: <Bernard_Aboba@hotmail.com>
- RE: RADEXT WG re-charter
  - From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
- RE: RADEXT WG re-charter
  - From: "David B. Nelson" <dnelson@elbrysnetworks.com>
- RE: RADEXT WG re-charter
  - From: "Glen Zorn" <glenzorn@comcast.net>

Prev by Date: RE: RADEXT WG re-charter
Next by Date: RE: Consensus Call on RADEXT WG re-charter
Previous by thread: RE: RADEXT WG re-charter
Next by thread: RE: RADEXT WG re-charter
Index(es):
- Date
- Thread