Suresh:
{ Dropping parts that have been resolved. }
>>> * Section 3.4
>>>
>>> The default server or
>>> responder configuration SHOULD disable such algorithms
>>
>> I do not understand this comment.
>
> This text seems to be at odds with the earlier statement that
>
> "Some nations specify cryptographic algorithms, and then require their
> use through legislation or regulations"
>
> It would be nice to clarify.
The idea is that only the administrators that must follow the legislation or
regulations need to enable them. I think this point is clear already, but you
did not copy the whole sentence:
The default server or
responder configuration SHOULD disable such algorithms; in this way,
explicit action by the system administrator is needed to enable them
where they are actually required.
>>> * Section 2
>>>
>>> OLD:
>>> one or more algorithm or suite identifier
>>>
>>> NEW:
>>> one or more algorithm or suite identifiers
>>
>> If you are talking about Section 2.1, this has been rewritten based on
>> another comment:
>>
>> IETF protocols that make use of cryptographic algorithms MUST support
>> one or more algorithm or suite. The protocol MUST include a
>> mechanism to identify the algorithm or suite that is being used.
>
> s/one or more algorithm or suite/one or more algorithms or suites/
Fixed.
Russ
_______________________________________________
Gen-art mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/gen-art
