looks good to me thanks Scott > On Feb 26, 2019, at 4:43 PM, Benjamin Kaduk <kaduk@xxxxxxx> wrote: > > Hi Scott, > > On Sun, Feb 17, 2019 at 12:21:29PM -0800, Scott Bradner wrote: >> Reviewer: Scott Bradner >> Review result: Has Nits >> >> This is an OPS-DIR review of PKINIT Algorithm Agility >> (draft-ietf-kitten-pkinit-alg-agility). This ID updates PKINIT following the >> guidelines in BCP 201 to make it algorithm agile and to expose acceptable >> algorithms. >> >> This is a very well written clear document. I do not find any operational >> issues with the document except that the document could use a section on >> interoperability (old server-new client, new server-old client). >> >> There are a few words about the topic deep in section 6 about the supportedKDFs >> field but I do not see a general discussion or a discussion about the kdf >> field. The text about the supportedKDFs field could be moved to a new section >> and each of the old/new combinations could be addressed. I see this as an >> operational issue because compatibility issues are a frequent source of >> operational headaches. > > Thanks for the review. The authors have posted an -05 that appears to > address your concerns. > > Thanks to the authors for the updates! > > -Ben
