Hosting Provided By

[Mobopts] RE: [Mipshop] RE: Review of draft-vidya-mipshop-handover-keys-aaa -00.txt

From: Narayanan Vidya-CVN065 <vidya(at)motorola.com>
Date: Thu Jul 21 2005 - 15:21:07 EDT

>
> > In fact, one of the things that will be a problem for us if

As long as the shared secret between MN and PAR is not piggybacked on L2 access authentication, this is true, right? If we were to tightly couple it to L2 access authentication, such independence does not seem to be available. The current protocol makes the creation of shared secret between MN and PAR be totally independent of the type of L2 access.

>
> Assuming so, which L3 handover key are you referring to that

I am confused by this. The L3 handover key I am referring to is the shared secret between MN and AR. If we extended an EAP method to derive this key, when the EAP authenticator is not the same as the AR, we have some issues in getting the key to the AR without breaking some of the Housley criteria. It is not that we need a new key as a result of a new L2 auth method, but it is the process of deriving a key with the next AR may now need to be different, due to the

> -Rajeev

Mobopts mailing list
Mobopts@irtf.org
https://www1.ietf.org/mailman/listinfo/mobopts Received on Thu Jul 21 15:22:57 2005

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:43:15 EDT