[prev in list] [next in list] [prev in thread] [next in thread]
List: ipsec
Subject: Re: [IPsec] New Version Notification for draft-kivinen-ipsecme-oob-pubkey-01.txt
From: Tero Kivinen <kivinen () iki ! fi>
Date: 2012-10-19 10:50:02
Message-ID: 20609.12378.3354.471264 () fireball ! kivinen ! iki ! fi
[Download RAW message or body]
Sean Turner writes:
> Gotta ask: Should this draft update RFC 5996? On the one hand, it's
> optional and existing implementations don't need to support it. On the
> other hand, if you're really trying to deprecate the old RSA raw key
> format shouldn't it update the base doc?
If we want to deprecate the old raw RSA keys, then I think this
document needs to be standard track, and it needs to update RFC 5996.
If we just add new format for raw public keys, and both old raw RSA
certificate format and this new format then I think it can be
informational and there is no need for this document to "Update" the
RFC5996. Our previous additions to the IKEv2 have not updated the base
spec (redirect, resumption, IPv6 address configuration, password
authentication, high availability, childless etc). The EAP only
authentication do update RFC5996.
So the answer really depends on which way the WG wants this document
to go...
> Could add an informative reference to RFC 5480 in App A for the 04 byte
> to indicate it's uncompressed. But, it's not absolutely necessary.
Done.
--
kivinen@iki.fi
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic