Hello Toerless,
I was tasked with reviewing the security aspects of that draft by the
security directorate, and I wrote a bried report assessing that it was
ready. Comments in line.
On 8/11/2024 12:51 AM, Toerless Eckert wrote:
1. S: How are the original RFC8110 authors relevant when the RFC and the new
draft are IETF AD sponsored instead of ISE track ?
This is a process question, others are best placed to respond.
2. Of course, if further progress on this technology is something the IETF
does not care about, it does make sense to make it as easy as possible for
IEEE do this work. I am not sure whether the draft achieves this because
of 1. I don't understand from the draft what exactly the IETF promises to
change in its behavior, or what legally changes - if anything. E.g.: is this
a promise to never ever touch anything related to rfc8110 ?? Has the IETF
ever made such a promise, e.g.: prior examples ?
From a security point of view, it seems highly preferable that security
enhancements to 802.11 protocols be done by the IEEE and integrated in
the next version of these 802.11 protocols.
A parallel effort would only be justified if the IETF did not trust the
IEEE and wanted to take over such developments. I don't think there is
any appetite for that.
3. I very much hope that the IEEE provides an equal or better opportunity
for those interestd to work on updates as IETF would. I am not sure this is
the case. Seems as if there is at least a potentially significant
membership fee associated with working in IEEE SA.
I can think of many security experts who are participating in both the
IEEE 802.11 work and the IETF security work.
As other have mentioned, we do have a liaison process.
4. What happens if this draft does not become RFC ?
Again, I am not the best placed to respond.
-- Christian Huitema
--
last-call mailing list -- last-call@xxxxxxxx
To unsubscribe send an email to last-call-leave@xxxxxxxx
