Re: [Emu] Re-Charter Considerations

2018-07-25 Thread Owen Friel (ofriel)
From: Emu On Behalf Of Dr. Pala Sent: Friday 20 July 2018 23:21 To: emu@ietf.org Subject: [Emu] Re-Charter Considerations Hi Emu-ers, I wanted to follow up the discussion from today's meeting. In particular, there is some work that has been proposed that might require re-chartering as

Re: [Emu] Comments on draft-lear-eap-teap-brski

2018-07-25 Thread Owen Friel (ofriel)
Thanks Alan. These suggestions make sense and will help clear up the confusion. They can be incorporated in draft-01. -Original Message- From: Emu On Behalf Of Alan DeKok Sent: Saturday 21 July 2018 15:12 To: emu@ietf.org Subject: [Emu] Comments on draft-lear-eap-teap-brski One of

Re: [Emu] teap-brski

2019-06-10 Thread Owen Friel (ofriel)
-Original Message- From: Emu On Behalf Of Dan Harkins Sent: 06 June 2019 15:13 To: an...@ietf.org; emu@ietf.org Subject: [Emu] teap-brski Hello, In a private thread on teap-brski the topic of co-location of the TEAP server and the BRSKI registrar was brought up. It was

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-09-18 Thread Owen Friel (ofriel)
> -Original Message- > From: Emu On Behalf Of Alan DeKok > Sent: 12 September 2019 16:28 > To: John Mattsson > Cc: draft-ietf-emu-eap-tl...@ietf.org; EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > On Sep 12, 2019, at 10:55 AM, John Mattsson > wrote: > >

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-09-18 Thread Owen Friel (ofriel)
> -Original Message- > From: Alan DeKok > Sent: 18 September 2019 14:40 > To: John Mattsson > Cc: Owen Friel (ofriel) ; draft-ietf-emu-eap- > tl...@ietf.org; EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > > > &g

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-09-18 Thread Owen Friel (ofriel)
And one other draft of interest: https://tools.ietf.org/html/draft-ietf-tls-external-psk-importer-00 > -Original Message- > From: Emu On Behalf Of Owen Friel (ofriel) > Sent: 18 September 2019 22:42 > To: Alan DeKok ; John Mattsson > > Cc: draft-ietf-emu-eap-tl..

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-09-19 Thread Owen Friel (ofriel)
> -Original Message- > From: Jim Schaad > Sent: 19 September 2019 07:28 > To: 'Alan DeKok' ; Owen Friel (ofriel) > > Cc: draft-ietf-emu-eap-tl...@ietf.org; 'EMU WG' > Subject: RE: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > I am going to come

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-09-19 Thread Owen Friel (ofriel)
> -Original Message- > From: John Mattsson > Sent: 19 September 2019 11:04 > To: Owen Friel (ofriel) ; Jim Schaad > ; 'Alan DeKok' > Cc: draft-ietf-emu-eap-tl...@ietf.org; 'EMU WG' > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > >

Re: [Emu] EAP questions (RE: POST WGLC Comments draft-ietf-emu-eap-tls13)

2019-11-11 Thread Owen Friel (ofriel)
> -Original Message- > From: Alan DeKok > Sent: 07 November 2019 17:43 > To: Owen Friel (ofriel) > Cc: Joseph Salowey ; draft-ietf-emu-eap-tl...@ietf.org; > EMU WG ; John Mattsson > ; Michael Richardson > > Subject: Re: EAP questions (RE: [Emu] POST W

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-11-11 Thread Owen Friel (ofriel)
> -Original Message- > From: Alan DeKok > Sent: 07 November 2019 17:48 > To: Owen Friel (ofriel) > Cc: Joseph Salowey ; draft-ietf-emu-eap-tl...@ietf.org; > John Mattsson ; Michael > Richardson ; EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-11-11 Thread Owen Friel (ofriel)
> -Original Message- > From: Emu On Behalf Of Alan DeKok > Sent: 08 November 2019 12:43 > To: Joseph Salowey > Cc: EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > On Nov 7, 2019, at 11:08 PM, Joseph Salowey wrote: > > [Joe] How about > > "If an

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-11-07 Thread Owen Friel (ofriel)
> -Original Message- > From: Emu On Behalf Of Joseph Salowey > Sent: 31 October 2019 04:45 > To: Alan DeKok > Cc: draft-ietf-emu-eap-tl...@ietf.org; John Mattsson > ; Michael Richardson > ; EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > > > On Wed, Oct

[Emu] EAP questions (RE: POST WGLC Comments draft-ietf-emu-eap-tls13)

2019-11-07 Thread Owen Friel (ofriel)
> -Original Message- > From: Emu On Behalf Of Joseph Salowey > Sent: 03 November 2019 18:31 > To: Alan DeKok > Cc: draft-ietf-emu-eap-tl...@ietf.org; EMU WG ; John > Mattsson ; Michael > Richardson > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > > On Fri, Nov 1,

[Emu] TLS1.3 and TEAP (RE: POST WGLC Comments draft-ietf-emu-eap-tls13)

2019-11-07 Thread Owen Friel (ofriel)
> -Original Message- > From: Emu On Behalf Of Alan DeKok > Sent: 01 November 2019 11:08 > To: John Mattsson > Cc: draft-ietf-emu-eap-tl...@ietf.org; Michael Richardson > ; John Mattsson > ; EMU WG > Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 > > On Nov 1, 2019,

Re: [Emu] Presentations for IETF 106

2019-11-16 Thread Owen Friel (ofriel)
Joe, Mohit, Somewhat disorganised and late request: there appears to be time in the agenda at the end for a 10 min update on: Title: ACME Integrations Drafts: draft-friel-acme-integrations, draft-friel-acme-subdomains Time: 10 minutes Currently doing slides on the plane.. -Original

Re: [Emu] Idea: New X509 Extension for securing EAP-TLS

2019-11-16 Thread Owen Friel (ofriel)
-Original Message- From: Emu On Behalf Of Michael Richardson Sent: 12 November 2019 09:20 To: emu@ietf.org Subject: Re: [Emu] Idea: New X509 Extension for securing EAP-TLS On 2019-11-12 7:15 a.m., Owen Friel (ofriel) wrote: > This is also related to ongoing anima discussions ab

Re: [Emu] Idea: New X509 Extension for securing EAP-TLS

2019-11-16 Thread Owen Friel (ofriel)
-Original Message- From: Emu On Behalf Of Alan DeKok Sent: 12 November 2019 16:32 To: Jan-Frederik Rieckers Cc: emu@ietf.org Subject: Re: [Emu] Idea: New X509 Extension for securing EAP-TLS > > The Problem with dNSNames is that they are also used in other contexts > (mainly

Re: [Emu] Idea: New X509 Extension for securing EAP-TLS

2019-11-16 Thread Owen Friel (ofriel)
The CA/Browser forum has concrete guidelines on address, email, domain verification outlined here. https://cabforum.org/wp-content/uploads/CA-Browser-Forum-BR-1.6.6.pdf All public CAs should follow these, or face blacklisting. CAs don’t want to risk being the next Symantec. " 3.2.2.1.

Re: [Emu] Idea: New X509 Extension for securing EAP-TLS

2019-11-16 Thread Owen Friel (ofriel)
-Original Message- From: Alan DeKok Sent: 16 November 2019 14:29 To: Owen Friel (ofriel) Cc: Jan-Frederik Rieckers ; emu@ietf.org Subject: Re: [Emu] Idea: New X509 Extension for securing EAP-TLS On Nov 16, 2019, at 7:59 AM, Owen Friel (ofriel) wrote: > [ofriel] this seems l

[Emu] EAP/EMU recommendations for client cert validation logic

2019-12-15 Thread Owen Friel (ofriel)
Hi, At ACME meeting at IETF106, the last discussion of the week was around EMU looking for recommendations for EAP client/peer/supplicant cert verification logic when the client is verifying the cert that the EAP server presents. Minutes here: https://datatracker.ietf.org/doc/minutes-106-acme/

Re: [Emu] Best practices for supplicants and authenticators

2019-11-19 Thread Owen Friel (ofriel)
Assuming that NAIRealm is a registered domain as per RFC 7542, and thus public CAs can verify ownership, the goal / where we want to get to is: - CA may be a public CA and thus public CAs can be enabled by default in supplicant config - supplicant checks NAI Realm in the EAP identity cert

Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

2019-10-10 Thread Owen Friel (ofriel)
From: Emu On Behalf Of John Mattsson Sent: 10 October 2019 09:30 To: Mohit Sethi M ; Eliot Lear Cc: draft-ietf-emu-eap-tl...@ietf.org; John Mattsson ; EMU WG Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13 Mohit Sethi M

Re: [Emu] [lamps] EAP/EMU recommendations for client cert validation logic

2020-01-07 Thread Owen Friel (ofriel)
Thanks for the detailed reply Ryan. See line. > -Original Message- > > If an EAP server operator wants to use a public CA identity cert on their EAP > server, what recommendations should we give to EAP clients so that the > supplicant code can handle public or private CA issued EAP

Re: [Emu] Late WGLC Comment on draft-ietf-emu-eap-tls13

2020-03-11 Thread Owen Friel (ofriel)
Alan, How should we interpret this in RFC 5216 https://tools.ietf.org/html/rfc5216#section-2.1.1: If the EAP server is not resuming a previously established session, then it MUST include a TLS server_certificate handshake message, and a server_hello_done handshake message MUST be the

[Emu] FW: New Version Notification for draft-friel-tls-eap-dpp-00.txt

2020-03-06 Thread Owen Friel (ofriel)
Message- From: internet-dra...@ietf.org Sent: 07 March 2020 07:56 To: Dan Harkins ; Owen Friel (ofriel) Subject: New Version Notification for draft-friel-tls-eap-dpp-00.txt A new version of I-D, draft-friel-tls-eap-dpp-00.txt has been successfully submitted by Owen Friel and posted to the IETF

Re: [Emu] Short review of draft-friel-tls-eap-dpp-01

2021-07-27 Thread Owen Friel (ofriel)
-Original Message- From: Emu On Behalf Of Alan DeKok Sent: 19 July 2021 00:40 To: EMU WG Subject: [Emu] Short review of draft-friel-tls-eap-dpp-01 No major notes here. There's still a lot of TBD in the document. :) NITS: Section 3 says: ... For unprovisioned devices