[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [eap] REVISED Last Call: 'Extensible Authentication Protocol (EAP)' to Proposed Standard

To: "Puthenkulam, Jose P" <jose.p.puthenkulam@intel.com>
Subject: Re: [eap] REVISED Last Call: 'Extensible Authentication Protocol (EAP)' to Proposed Standard
From: Jari Arkko <jari.arkko@piuha.net>
Date: Sun, 09 Nov 2003 17:00:14 +0200
Cc: eap@frascone.com, iesg@ietf.org
In-reply-to: <A85D0005D524BB4BA9C072F50E8A247F16F730@orsmsx410.jf.intel.com>
Organization: None
References: <A85D0005D524BB4BA9C072F50E8A247F16F730@orsmsx410.jf.intel.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030225

Puthenkulam, Jose P wrote:

In section 7.2 [c]

Replace "acknowledged result indications" with "protected result
indications". It makes more sense to have the EAP method indicate its
result in a protected manner than making sure the result is
acknowledged.


Ok. The term is defined in 7.2.1, and the text already requires protection,
I agree that the name "protected result indications" would be appropriate.
Need to change the name then in both 7.2 and 7.2.1 as well as in a few
other places in the document...

Also for section 7.4 Man-in-the-middle attacks would it not be
appropriate to add an informative reference to the EAP Binding Draft and
the Nokia Mitm paper.

Yes, this would be appropriate.

Thanks for your comments.

--Jari

References:
- RE: [eap] REVISED Last Call: 'Extensible Authentication Protocol (EAP)' to Proposed Standard
  - From: "Puthenkulam, Jose P" <jose.p.puthenkulam@intel.com>

Prev by Date: Re: IDN deployed in Sweden
Next by Date: Re: IDN deployed in Sweden
Previous by thread: RE: [eap] REVISED Last Call: 'Extensible Authentication Protocol (EAP)' to Proposed Standard
Next by thread: belkin
Index(es):
- Date
- Thread