Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-03-09 Thread Russ Housley
> On Mar 9, 2020, at 10:28 AM, Alan DeKok wrote: > >> The >> subject name in client certificates typically contains an identity >> with a routable domain such as an email address. > > The email address may not be routable. Perhaps: > > The subject name in client certificates typically con

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-03-09 Thread Alan DeKok
On Mar 9, 2020, at 9:03 AM, John Mattsson wrote: > > Thanks for you many good suggestions. I tried to address all your comments > and include all your suggestions in a recent commit to github. > > - I did not include an identity section as I did not see how it would fit > with the structure of

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-03-09 Thread John Mattsson
Hi Alan, Thanks for you many good suggestions. I tried to address all your comments and include all your suggestions in a recent commit to github. - I did not include an identity section as I did not see how it would fit with the structure of RFC 5216 that the draft reuses. Instead I expanded t

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-01-07 Thread Alan DeKok
On Jan 7, 2020, at 4:10 AM, Mohit Sethi M wrote: > The current text already says this in 2.1.7: "EAP-TLS peer and server > implementations supporting TLS 1.3 or higher MUST support anonymous NAIs > (Network Access Identifiers) (Section 2.4 in [RFC7542]) and a client > supporting TLS 1.3 MUST NO

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-01-07 Thread Mohit Sethi M
Hi Alan, On 12/28/19 3:29 PM, Alan DeKok wrote: > On Dec 27, 2019, at 1:54 PM, internet-dra...@ietf.org wrote: >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-emu-eap-tls13-08 >Which adds some text about identities: > > It is REC

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2020-01-07 Thread Mohit Sethi M
Hi Alan, On 12/28/19 3:29 PM, Alan DeKok wrote: > On Dec 27, 2019, at 1:54 PM,internet-dra...@ietf.org wrote: >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-emu-eap-tls13-08 >Which adds some text about identities: > > It is REC

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2019-12-28 Thread Alan DeKok
On Dec 27, 2019, at 1:54 PM, internet-dra...@ietf.org wrote: > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-emu-eap-tls13-08 Which adds some text about identities: It is RECOMMENDED to use anonymous NAIs with the same realm in the

[Emu] I-D Action: draft-ietf-emu-eap-tls13-08.txt

2019-12-27 Thread internet-drafts
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the EAP Method Update WG of the IETF. Title : Using EAP-TLS with TLS 1.3 Authors : John Preuß Mattsson Mohit Sethi Filen