Dear all,
We have submitted a new version of the draft draft-ietf-ace-wg-coap-eap,
addressing the comments received.
Best Regards.
El 23/10/23 a las 13:32, internet-dra...@ietf.org escribió:
Internet-Draft draft-ietf-ace-wg-coap-eap-09.txt is now available. It is a
work item of the Authenti
Hi emu folks,
as already teased at the last IETF, we finally have a first I-D ready
for EAP-FIDO.[1]
The basic idea:
Password-based network authentication is not really state-of-the-art any
more and, due to failure to verify the server certificate, sometimes
even completely broken.
Almost ev
It looks good as a first draft. Some first draft comments:
I would suggest that the default should be to using the Web PKI for server
authentication, unless there's a client configuration which says to use a
different CA. This behavior means that configuring EAP-FIDO for a domain is
simpl
Hi Jan,
I would like to learn a bit more about the concerns you expressed regarding
EAP-TLS.
If there are problems, then they should have been fixed with the work on
EAP-TLS 1.3.
You write:
"
The specification for EAP-TLS [RFC5216] does not
include guidance on how to decide if a certifica
