[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: no overall type in Extended Attributes

To: "'Alan DeKok'" <aland@deployingradius.com>
Subject: RE: no overall type in Extended Attributes
From: "Glen Zorn" <glenzorn@comcast.net>
Date: Fri, 29 Aug 2008 23:50:08 +0700
Cc: "'radext mailing list'" <radiusext@ops.ietf.org>
In-reply-to: <48B6AF7C.9000004@deployingradius.com>
References: <Pine.LNX.4.64.0808131912120.24114@internaut.com> <000801c8fe00$b50248a0$1f06d9e0$@net> <003a01c907fc$7c437b00$74ca7100$@net> <48B4F3CA.7020901@deployingradius.com> <004701c90820$5ce75550$16b5fff0$@net> <48B51378.2040100@deployingradius.com> <004c01c90822$8f7612c0$ae623840$@net> <48B518C2.6020609@deployingradius.com> <005001c90826$8bfd69f0$a3f83dd0$@net> <48B53CCC.8050505@deployingradius.com> <007101c90846$965add40$c31097c0$@net> <48B5645D.7050202@deployingradius.com> <00a601c90913$f27767b0$d7663710$@net> <48B6AF7C.9000004@deployingradius.com>

Alan DeKok [mailto:aland@deployingradius.com] writes:

> Glen Zorn wrote:
> > No, I said that I want to name an attribute that consists of a group
> of
> > TLVs, not the same thing.
> 
>   Hmm... the number space for the Extended-Types is flat.  So one
> attribute cannot "consist of" a group of TLV's.
> 
> >  For example: a cryptosuite consists of a an
> > encryption algorithm identifier and an integrity-protection algorithm
> > identifier.  Multiple cryptosuite attributes can be in the same
> message.
> > Both the integrity-protection and encryption algorithms MUST be
> present or
> > the cryptosystem attribute is malformed.  I know how to do this
> easily & in
> > a way that comprehensible in Diameter or w/a legacy RADIUS attribute.
> 
>   Diameter has a "group" attribute, which is easy.  I don't know how to
> do this with a legacy attribute, other than via a complex type.

Right.  The example is related to security...anyway, here's an idea: how
about breaking the Ext-Type field into 2 8-bit fields one of which stays in
the Extended Attribute header (giving naming capability for the attribute
itself) & the other staying in the TLV header?  

> 
> > Apparently it is not possible to specify such a thing in an easily
> > comprehensible fashion using Extended Attributes.  I consider this to
> be a
> > problem (now -- I didn't before because I hadn't run into this,
> > short-sighted, I know); I'm not sure why (given your sympathetic
> concern for
> > programmers who would separate the word "hello" into 5 different
> attributes
> > ;-) do not.
> 
>   I don't see a problem with sub-TLV's, like is done for WiMAX.  The
> various vendors will be implementing WiMAX anyways, so adding sub-TLV's
> here wouldn't be a problem.
> 
>   This would involve extending the RADIUS data model to include a "tlv"
> type.  If the format is the normal 8-bit type, 8-bit data, it would be
> compatible with the WiMAX definition, the 3GPP definitions, and perhaps
> some other vendor-specific definitions.
> 
>   Alan DeKok.



--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>

References:
- Re: no overall type in Extended Attributes
  - From: Bernard Aboba <aboba@internaut.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>
- RE: no overall type in Extended Attributes
  - From: "Glen Zorn" <glenzorn@comcast.net>
- Re: no overall type in Extended Attributes
  - From: Alan DeKok <aland@deployingradius.com>

Prev by Date: Re: no overall type in Extended Attributes
Next by Date: RE: Subject: I-D Action:draft-tiwari-radext-tunnel-type-01.txt (fwd)
Previous by thread: Re: no overall type in Extended Attributes
Next by thread: Re: no overall type in Extended Attributes
Index(es):
- Date
- Thread