[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-congdon-radius-8021x

To: iesg-secretary@ietf.org
Subject: draft-congdon-radius-8021x
From: Russ Housley <housley@vigilsec.com>
Date: Wed, 16 Apr 2003 03:54:08 -0400
Cc: iesg@ietf.org

I have three comments on this document.

1. The last paragraph of section 5.1, please change "should" to "SHOULD". It says:

As a result, when used with IEEE 802.1X, all RADIUS packets are
authenticated and integrity protected, and should be replay protected
using IPsec.

2. The last paragraph of section 5.4, please change "should" to "SHOULD". It says:

As with the Request Authenticator, for use with IEEE 802.1X
Authenticators, the Acct-Session-Id should be globally and temporally
unique.

3. The text in section 5.6 could lead the reader to expect a future IEEE 802.11 document to describe authentication and integrity mechanisms for management messages. Current efforts in IEEE 802.11 do not address this issue.

Russ

Follow-Ups:
- Re: draft-congdon-radius-8021x
  - From: Thomas Narten <narten@us.ibm.com>

Prev by Date: Re: draft-ietf-ccamp-gmpls-architecture-05.txt
Next by Date: RE: draft-ietf-ccamp-gmpls-architecture-05.txt
Previous by thread: draft-ietf-sigtran-security
Next by thread: Re: draft-congdon-radius-8021x
Index(es):
- Date
- Thread