Skip to content

Comments from NOBLINS Ionathan (Security) #147

New issue
New issue
Open
Open
Comments from NOBLINS Ionathan (Security)#147
Labels
OPSAWG-CFA
@boucadair

Description

@boucadair
boucadair
opened on Oct 27, 2025

Hi all,

In line with the ongoing developments regarding TACACS+ security, the following suggestions may help strengthen security content in the document:

• 9. Security considerations:

  • 2nd paragraph: only management protocols with adequate security apparatus, such as state-of-the-art encryption, mutual authentication [...]
  • Additional paragraph: The security implications of password-based authentication should be taken into account when designing a New Protocol or Protocol Extension.

• Introduction, 1st paragraph: certain protocol design choices may make deployment, operations, and management particularly difficult or insecure

And possibly:

• 5.8 Security management, 1st paragraph: Protocol Designers should consider how to monitor and manage security aspects and vulnerabilities of the New Protocol or Protocol Extension***, including periodically re-assessing the design of the New Protocol or Protocol Extension as vulnerabilities arise***

Metadata

Metadata

Assignees

No one assigned

    Labels

    OPSAWG-CFA

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions