In section 3.7 we say: "The tunnel method MUST be capable of providing client side authentication during tunnel establishment."
So the tunnel MUST be capable of proving mutual authentication. Does the text need modification? Joe > -----Original Message----- > From: Yaron Sheffer [mailto:[email protected]] > Sent: Thursday, August 06, 2009 1:57 PM > To: Joseph Salowey (jsalowey); [email protected] > Subject: RE: Issue #22: Collection of smaller issues > > [snip] > > > > > Section 4.2.1.1.3 > > > > > > " A tunnel method MUST provide unidirectional > authentication from > > > authentication server to EAP peer or mutual > authentication between > > > authentication server and EAP peer." > > > > > > Is this really an or? For example, would a tunnel > method > that > > only supports undirectional authentication satisfy the > > requirement? > > > > > > > It should be "and" > > > [YS] Why? This is discussing the "outer" method, which may > indeed provide only unidirectional auth. > > Thanks, > Yaron > > -- > > Ticket URL: <http://wiki.tools.ietf.org/wg/emu/trac/ticket/22> > > emu <http://tools.ietf.org/wg/emu/> > > > > _______________________________________________ > > Emu mailing list > > [email protected] > > https://www.ietf.org/mailman/listinfo/emu > > > > Scanned by Check Point Total Security Gateway. > _______________________________________________ Emu mailing list [email protected] https://www.ietf.org/mailman/listinfo/emu
