Discussion:
[anonsec] AD review comments on draft-ietf-btns-core
Sam Hartman
2007-12-20 20:25:07 UTC
Permalink
Hi. I've sent the core document to last call. It was not as readable
as I would like. If you get a bunch of comments back from people who
do not understand you probably should take a style and readability
pass.

I have two changes I'd like te request as last call comments myself.

First, when you require bare RSA cert payloads, please reference a
specific section of the IKE V2 spec for a definition of this. Also,
how can BTNS work with DSA if nodes are required to include RSA
payloads?




Please replace the statement in section 4.2 that leap of faith is
being handled by BTNS with a statement that it is an item for future
work.
Nicolas Williams
2008-01-04 05:51:41 UTC
Permalink
Post by Sam Hartman
Hi. I've sent the core document to last call. It was not as readable
as I would like. If you get a bunch of comments back from people who
do not understand you probably should take a style and readability
pass.
I have two changes I'd like te request as last call comments myself.
First, when you require bare RSA cert payloads, please reference a
specific section of the IKE V2 spec for a definition of this. Also,
OK (RFC4306, section 3.6).
Post by Sam Hartman
how can BTNS work with DSA if nodes are required to include RSA
payloads?
A bare DSA payload would have to be defined. We could change the
language to require the use of a bare public key payload and point out
that currently there is only a bare RSA key payload.
Post by Sam Hartman
Please replace the statement in section 4.2 that leap of faith is
being handled by BTNS with a statement that it is an item for future
work.
This is already done in -05.

I'll make the other changes and post -06.

Loading...