Hi Alan
I think it's good to consider what's going on on both sides here. At
the beginning, both the identity and the role of the device in a network
may be unknown, and so a certain access is given. After bootstrapping
has occurred (however that happens), then both the role of the device
a
On Aug 3, 2023, at 4:10 AM, Eliot Lear wrote:
> I think it's good to consider what's going on on both sides here. At the
> beginning, both the identity and the role of the device in a network may be
> unknown, and so a certain access is given. After bootstrapping has occurred
> (however that
Alan DeKok wrote:
> I'll note that the peer can always simply stop doing EAP once it's
> fully provisioned. i.e. it doesn't need to get an EAP Failure or EAP
> Success from the server. However, such behavior is unfriendly to the
> server. It leaves the server with a blocked E
Dear Vesa Lehtovirta (cc: emu WG),
We would like to follow-up on this expert review request.
As the designated expert for the Attribute Types (Skippable Attributes 128-255)
registry, can you review the proposed registrations in
draft-ietf-emu-aka-pfs-11 for us? Please see
https://datatracker.i
A New Internet-Draft is available from the on-line Internet-Drafts
directories. This Internet-Draft is a work item of the EAP Method Update (EMU)
WG of the IETF.
Title : Tunnel Extensible Authentication Protocol (TEAP) Version 1
Author : Alan DeKok
Filename: d
The diff is perhaps more interesting:
https://author-tools.ietf.org/iddiff?url1=draft-ietf-emu-rfc7170bis-09&url2=draft-ietf-emu-rfc7170bis-10&difftype=--html
* clarify terminology on inner / outer TLVs as per Eliot's suggestion
* add paragraphs on resumption and provisioning as per recent d
On Thu, 3 Aug 2023 at 11:10, Eliot Lear wrote:
> I don't think EAP Failure should ever really be contemplated during a
> housekeeping operation *unless* an intermediate-success is first
> generated, because otherwise we can bet that at least some clients will
> take that as a signal that the hous
