The IESG has received a request from the RADIUS EXTensions WG (radext) to consider the following document: - 'RadSec: RADIUS over Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)' <draft-ietf-radext-radiusdtls-bis-14.txt> as Proposed Standard
The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the [email protected] mailing lists by 2026-02-23. Exceptionally, comments may be sent to [email protected] instead. In either case, please retain the beginning of the Subject line to allow automated sorting. AD Note: There is one issue that came up during WGLC that I would hope to hear more opinions about related to the Event-Timestamp attribute vs Acct-Time-Delay attribute, see https://mailarchive.ietf.org/arch/msg/radext/b-Xu-VLvHDfeZljGQNKNayPgiWk/ Abstract This document defines transport profiles for running RADIUS over Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS), allowing the secure and reliable transport of RADIUS messages. RADIUS/TLS and RADIUS/DTLS are collectively referred to as RadSec. This document obsoletes RFC6614 and RFC7360, which specified experimental versions of RADIUS over TLS and DTLS. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-radext-radiusdtls-bis/ No IPR declarations have been submitted directly on this I-D. The document contains these normative downward references. See RFC 3967 for additional information: rfc2866: RADIUS Accounting (Informational - Internet Engineering Task Force (IETF) stream) rfc5176: Dynamic Authorization Extensions to Remote Authentication Dial In User Service (RADIUS) (Informational - Internet Engineering Task Force (IETF) stream) rfc7585: Dynamic Peer Discovery for RADIUS/TLS and RADIUS/DTLS Based on the Network Access Identifier (NAI) (Experimental - Internet Engineering Task Force (IETF) stream) rfc7930: Larger Packets for RADIUS over TCP (Experimental - Internet Engineering Task Force (IETF) stream) rfc5997: Use of Status-Server Packets in the Remote Authentication Dial In User Service (RADIUS) Protocol (Informational - Internet Engineering Task Force (IETF) stream) _______________________________________________ IETF-Announce mailing list -- [email protected] To unsubscribe send an email to [email protected]
