Last Call Review of draft-ietf-radext-ieee802ext-10
review-ietf-radext-ieee802ext-10-secdir-lc-hoffman-2014-01-30-00

Request Review of draft-ietf-radext-ieee802ext
Requested rev. no specific revision (document currently at 12)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2014-02-04
Requested 2014-01-23
Other Reviews Genart Last Call review of -10 by Ben Campbell (diff)
Genart Telechat review of -11 by Ben Campbell (diff)
Review State Completed
Reviewer Paul Hoffman
Review review-ietf-radext-ieee802ext-10-secdir-lc-hoffman-2014-01-30
Posted at https://www.ietf.org/mail-archive/web/secdir/current/msg04553.html
Reviewed rev. 10 (document currently at 12)
Review result Ready
Draft last updated 2014-01-30
Review completed: 2014-01-30

Review
review-ietf-radext-ieee802ext-10-secdir-lc-hoffman-2014-01-30

This document defines some additional RADIUS attributes for IEEE 802 authenticators acting as AAA clients, and also clarifies some EAP usages. Thus, it describes authentication and authorization requests that are supposedly local to a network. The security considerations are pretty massive, but they are covered in other RFCs reasonably well, and those are listed in the Security Considerations. If you buy into the normal use of RADIUS in IEEE 802 networks, this document doesn't present anything at all challenging.

--Paul Hoffman