Re: [Emu] I-D ACTION:draft-ietf-emu-eap-gpsk-02.txt
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Emu] I-D ACTION:draft-ietf-emu-eap-gpsk-02.txt
On Mon, Jan 08, 2007 at 07:39:06PM -0800, Jouni Malinen wrote:
> > Title : EAP Generalized Pre-Shared Key (EAP-GPSK)
> > Author(s) : C. Clancy, H. Tschofenig
> > Filename : draft-ietf-emu-eap-gpsk-02.txt
>
> Some comments..
And one more..
5. Ciphersuites
GKDF-X(Y, Z) was modified to use "Hash-Function" instead of MAC_Y.
However, there does not seem to be any definition on which hash function
is used here.. SHA-1 is mentioned as a required function and "SHAs" are
recommended (whatever that means; SHA-256 and friends?), but the
ciphersuite does not include information on which hash function is to be
used here. Previously, this was covered by the "Integrity" column of
Figure 3. Should the ciphersuite table be extended to define the hash
function for GKDF now?
In addition, this "SHA-1" here is the only need use of SHA-1 for
EAP-GPSK. Do we really need it? Was this done because of possible NIST
issues with the use of AES-CMAC for KDF?
--
Jouni Malinen PGP id EFC895FA
_______________________________________________
Emu mailing list
Emu at ietf.org
https://www1.ietf.org/mailman/listinfo/emu
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
