Hi Scott, On Sun, Feb 17, 2019 at 12:21:29PM -0800, Scott Bradner wrote: > Reviewer: Scott Bradner > Review result: Has Nits > > This is an OPS-DIR review of PKINIT Algorithm Agility > (draft-ietf-kitten-pkinit-alg-agility). This ID updates PKINIT following the > guidelines in BCP 201 to make it algorithm agile and to expose acceptable > algorithms. > > This is a very well written clear document. I do not find any operational > issues with the document except that the document could use a section on > interoperability (old server-new client, new server-old client). > > There are a few words about the topic deep in section 6 about the supportedKDFs > field but I do not see a general discussion or a discussion about the kdf > field. The text about the supportedKDFs field could be moved to a new section > and each of the old/new combinations could be addressed. I see this as an > operational issue because compatibility issues are a frequent source of > operational headaches. Thanks for the review. The authors have posted an -05 that appears to address your concerns. Thanks to the authors for the updates! -Ben
