Script updating gh-pages from 36316ba. [ci skip]

index.html

@@ -24,14 +24,6 @@ <h1>Editor's drafts for master branch of <a href="https://github.com/ace-wg/ace-
         <td></td>
       </tr>
     </table>
-    <h2>Preview for branch <a href="iana-reviews">iana-reviews</a></h2>
-    <table id="branch-iana-reviews">
-      <tr>
-        <td><a href="iana-reviews/draft-ietf-ace-key-groupcomm.html" class="html draft-ietf-ace-key-groupcomm" title="Key Provisioning for Group Communication using ACE (HTML)">Key Provisioning for Group Communication</a></td>
-        <td><a href="iana-reviews/draft-ietf-ace-key-groupcomm.txt" class="txt draft-ietf-ace-key-groupcomm" title="Key Provisioning for Group Communication using ACE (Text)">plain text</a></td>
-        <td><a href="https://author-tools.ietf.org/api/iddiff?url_1=https://ace-wg.github.io/ace-key-groupcomm/draft-ietf-ace-key-groupcomm.txt&amp;url_2=https://ace-wg.github.io/ace-key-groupcomm/iana-reviews/draft-ietf-ace-key-groupcomm.txt" class="diff draft-ietf-ace-key-groupcomm">diff with master</a></td>
-      </tr>
-    </table>
     <h2>Preview for branch <a href="roman-danyliw-review">roman-danyliw-review</a></h2>
     <table id="branch-roman-danyliw-review">
       <tr>
@@ -40,6 +32,14 @@ <h2>Preview for branch <a href="roman-danyliw-review">roman-danyliw-review</a></
         <td><a href="https://author-tools.ietf.org/api/iddiff?url_1=https://ace-wg.github.io/ace-key-groupcomm/draft-ietf-ace-key-groupcomm.txt&amp;url_2=https://ace-wg.github.io/ace-key-groupcomm/roman-danyliw-review/draft-ietf-ace-key-groupcomm.txt" class="diff draft-ietf-ace-key-groupcomm">diff with master</a></td>
       </tr>
     </table>
+    <h2>Preview for branch <a href="iana-reviews">iana-reviews</a></h2>
+    <table id="branch-iana-reviews">
+      <tr>
+        <td><a href="iana-reviews/draft-ietf-ace-key-groupcomm.html" class="html draft-ietf-ace-key-groupcomm" title="Key Provisioning for Group Communication using ACE (HTML)">Key Provisioning for Group Communication</a></td>
+        <td><a href="iana-reviews/draft-ietf-ace-key-groupcomm.txt" class="txt draft-ietf-ace-key-groupcomm" title="Key Provisioning for Group Communication using ACE (Text)">plain text</a></td>
+        <td><a href="https://author-tools.ietf.org/api/iddiff?url_1=https://ace-wg.github.io/ace-key-groupcomm/draft-ietf-ace-key-groupcomm.txt&amp;url_2=https://ace-wg.github.io/ace-key-groupcomm/iana-reviews/draft-ietf-ace-key-groupcomm.txt" class="diff draft-ietf-ace-key-groupcomm">diff with master</a></td>
+      </tr>
+    </table>
     <h2>Preview for branch <a href="artart-review">artart-review</a></h2>
     <table id="branch-artart-review">
       <tr>

roman-danyliw-review/draft-ietf-ace-key-groupcomm.html

@@ -3551,7 +3551,7 @@ <h2 id="name-removal-of-a-group-member">
           <p id="section-5-2.1.1">The Client explicitly asks to leave the group, as defined in <a href="#ssec-group-leaving" class="auto internal xref">Section 4.8.3.1</a>.<a href="#section-5-2.1.1" class="pilcrow">¶</a></p>
 </li>
         <li id="section-5-2.2">
-          <p id="section-5-2.2.1">The node has been found compromised or is suspected so.<a href="#section-5-2.2.1" class="pilcrow">¶</a></p>
+          <p id="section-5-2.2.1">The node has been found compromised or is suspected so. The KDC is expected to determine that a group member has to be evicted either through its own means, or based on information that it obtains from a trusted source (e.g., an Intrusion Detection System, or an issuer of authentication credentials). Additional mechanics, protocols, and interfaces at the KDC that can support this are out of the scope of this document.<a href="#section-5-2.2.1" class="pilcrow">¶</a></p>
 </li>
         <li id="section-5-2.3">
           <p id="section-5-2.3.1">The Client's authorization to be a group member with the current roles is not valid anymore, i.e., the access token has expired or has been revoked. If the AS provides token introspection (see <span><a href="https://rfc-editor.org/rfc/rfc9200#section-5.9" class="relref">Section 5.9</a> of [<a href="#RFC9200" class="cite xref">RFC9200</a>]</span>), the KDC can optionally use it and check whether the Client is still authorized.<a href="#section-5-2.3.1" class="pilcrow">¶</a></p>

roman-danyliw-review/draft-ietf-ace-key-groupcomm.txt

@@ -3106,7 +3106,13 @@ Table of Contents
    1.  The Client explicitly asks to leave the group, as defined in
        Section 4.8.3.1.
 
-   2.  The node has been found compromised or is suspected so.
+   2.  The node has been found compromised or is suspected so.  The KDC
+       is expected to determine that a group member has to be evicted
+       either through its own means, or based on information that it
+       obtains from a trusted source (e.g., an Intrusion Detection
+       System, or an issuer of authentication credentials).  Additional
+       mechanics, protocols, and interfaces at the KDC that can support
+       this are out of the scope of this document.
 
    3.  The Client's authorization to be a group member with the current
        roles is not valid anymore, i.e., the access token has expired or