RFC Errata
RFC 4227, "Using the Simple Object Access Protocol (SOAP) in Blocks Extensible Exchange Protocol (BEEP)", January 2006
Note: This RFC has been updated by RFC 8553
Source of RFC: IETF - NON WORKING GROUPSee Also: RFC 4227 w/ inline errata
Errata ID: 162
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Alfred Hoenes
Date Reported: 2006-02-08
Verifier Name: Eamon O'Tuathail
Date Verified: 2006-02-14
Section 9 says:
Although service provisioning is a policy matter, at a minimum, all implementations MUST provide the following tuning profiles: for authentication: http://iana.org/beep/SASL/DIGEST-MD5 for confidentiality: http://iana.org/beep/TLS (using the TLS_RSA_WITH_AES_EDE_CBC_SHA cipher) for both: http://iana.org/beep/TLS (using the TLS_RSA_WITH_AES_EDE_CBC_SHA cipher supporting client-side certificates)
It should say:
Although service provisioning is a policy matter, at a minimum, all implementations MUST provide the following tuning profiles: for authentication: http://iana.org/beep/SASL/DIGEST-MD5 for confidentiality: http://iana.org/beep/TLS (using the TLS_RSA_WITH_AES_128_CBC_SHA cipher) for both: http://iana.org/beep/TLS (using the TLS_RSA_WITH_AES_128_CBC_SHA cipher supporting client-side certificates)
Notes:
--VERIFIER NOTES--
It was first reported to us by Alfred Hînes with helpful comments by Philip
Nesser.