[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HOKEY] EMSK Issue

To: "Narayanan, Vidya" <vidyan at qualcomm.com>, "Charles Clancy" <clancy at cs.umd.edu>
Subject: Re: [HOKEY] EMSK Issue
From: "Joseph Salowey (jsalowey)" <jsalowey at cisco.com>
Date: Sun, 30 Mar 2008 22:33:03 -0700
Authentication-results: sj-dkim-2; header.From=jsalowey at cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; );
Cc: ietf at ietf.org, hokey at ietf.org, Bernard Aboba <bernarda at windows.microsoft.com>
Delivered-to: ietfarch-hokey-web-archive at core3.amsl.com
Delivered-to: hokey at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; l=2195; t=1206941534; x=1207805534; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=jsalowey at cisco.com; z=From:=20=22Joseph=20Salowey=20(jsalowey)=22=20<jsalowey at ci sco.com> |Subject:=20RE=3A=20[HOKEY]=20EMSK=20Issue |Sender:=20; bh=3QQQhQZFwDJjZ6wJRW1+61SO2HTig3Y2GYAccbvKBOw=; b=TOhuXryApriB5JxBZ9m4s0eOOB4su4ervJTV8NM+rm2vBO/eUt+N5CYKZQ EIftkCyWhCvhpeH0VSOL8GP12oFWNR7SUiTYRBAiPiyM3DN8DNNE9fyhqHoL W4hhmCNLCp;
In-reply-to: <C24CB51D5AA800449982D9BCB90325130162110E at NAEX13.na.qualcomm.com>
List-archive: <http://www.ietf.org/pipermail/hokey>
List-help: <mailto:hokey-request@ietf.org?subject=help>
List-id: HOKEY WG Mailing List <hokey.ietf.org>
List-post: <mailto:hokey@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>
Sender: hokey-bounces at ietf.org
Thread-index: AciNVURfKL5k48XoQuuTKuVJnSKTeAAhVkrgAUV0ZMA=
Thread-topic: [HOKEY] EMSK Issue

Hi Vidya,

I think this is an excellent start.  I'll put some applicability and
security considerations text together for the document for discussion on
the list.  

Cheers,

Joe 

> -----Original Message-----
> From: hokey-bounces at ietf.org [mailto:hokey-bounces at ietf.org] 
> On Behalf Of Narayanan, Vidya
> Sent: Monday, March 24, 2008 11:27 AM
> To: Charles Clancy
> Cc: ietf at ietf.org; hokey at ietf.org; Bernard Aboba
> Subject: Re: [HOKEY] EMSK Issue
> 
> Charles,
> 
> > -----Original Message-----
> > From: Charles Clancy [mailto:clancy at cs.umd.edu]
> > Sent: Sunday, March 23, 2008 7:18 PM
> > To: Narayanan, Vidya
> > Cc: Glen Zorn; ietf at ietf.org; hokey at ietf.org; Bernard Aboba
> > Subject: Re: [HOKEY] EMSK Issue
> > 
> > Vidya,
> > 
> >  > ... do the responsible thing, which would be to clearly 
> define the  
> > > applicability, along with providing an interoperable means of 
> > defining  > the key hierarchy for those usages that want to/can use 
> > it.
> > 
> > This is all I'm suggesting we do.  I think we should add 
> text to the 
> > document that gives guidance on the types of usages for 
> which a USRK 
> > would be appropriate.  Usages should be for functions 
> related to the 
> > access network to which you are connecting, and for 
> functions where it 
> > is reasonable for your access network to have an interest in 
> > authorization.
> > 
> 
> How about the following text for applicability: 
> 
> "It must be noted that any application of EAP keying material 
> to other usages such as handoffs, IP mobility or other 
> applications is only feasible when those services are 
> provided either by or through the provider handling network 
> access.  It is also only feasible when those usages only 
> occur over EAP-capable interfaces. Hence, deriving USRKs or 
> DSUSRKs for usages other than those facilitated by the 
> network access provider is NOT RECOMMENDED." 
> 
> Thanks,
> Vidya
> _______________________________________________
> HOKEY mailing list
> HOKEY at ietf.org
> https://www.ietf.org/mailman/listinfo/hokey
> 
_______________________________________________
HOKEY mailing list
HOKEY at ietf.org
https://www.ietf.org/mailman/listinfo/hokey

References:
- Re: [HOKEY] EMSK Issue
  - From: Narayanan, Vidya

Prev by Date: Re: [HOKEY] WGLC: draft-ietf-hokey-preauth-ps-02
Next by Date: Re: [HOKEY] WGLC: draft-ietf-hokey-preauth-ps-02
Previous by thread: Re: [HOKEY] EMSK Issue
Next by thread: Re: [HOKEY] EMSK Issue
Index(es):
- Date
- Thread