RE: [Emu] Thoughts on Password-based EAP Methods

To: "Bernard Aboba" <bernard_aboba at hotmail.com>, <emu at ietf.org>
Subject: RE: [Emu] Thoughts on Password-based EAP Methods
From: "Joseph Salowey \(jsalowey\)" <jsalowey at cisco.com>
Date: Tue, 3 Apr 2007 08:15:35 -0700
Authentication-results: sj-dkim-2; header.From=jsalowey@cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; );
Cc:
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=1447; t=1175613344; x=1176477344; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=jsalowey@cisco.com; z=From:=20=22Joseph=20Salowey=20\(jsalowey\)=22=20<jsalowey@cisco.com> |Subject:=20RE=3A=20[Emu]=20Thoughts=20on=20Password-based=20EAP=20Method s |Sender:=20; bh=/RbUqpJQkNj51ZGY90YPgfRxhslddpPs7/z/Mtpsxvo=; b=omqx/MH5b9OCPGcqjCDX/M+DlC5UrxUQJGWLEEz7wUkxivurWlkrHHE1fyq8kT2Hah6NJNzE qXczoPD7pLpDwmXdjtvBmZqJx9afEzf1Q8JiNV2mcmvclO3KcPuPcQcV;
In-reply-to: <BAY117-F16277E1F5B6CEF748C42AC93600@phx.gbl>
List-archive: <http://www1.ietf.org/pipermail/emu>
List-help: <mailto:emu-request@ietf.org?subject=help>
List-id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-post: <mailto:emu@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
Thread-index: Acd1eLJ4rcfb6ubPRKyrmX8KD8SaPgAiZwTA
Thread-topic: [Emu] Thoughts on Password-based EAP Methods

Some of the things that need to be fixed are fairly fundamental. For
example crypto-binding and avoiding multiple layers of negotiation are
fairly fundamental.  At this point I'm not sure that modifying TLVs is
the best way to achieve this.  It needs to be investigated.  

Joe

> -----Original Message-----
> From: Bernard Aboba [mailto:bernard_aboba at hotmail.com] 
> Sent: Monday, April 02, 2007 3:46 PM
> To: emu at ietf.org
> Subject: RE: [Emu] Thoughts on Password-based EAP Methods
> 
> >I'm not sure that adding yet another version to TTLS 
> specifically for 
> >supporting passwords will make things better for customers.  
> Multiple 
> >versions certainly has caused quite a confusion in PEAP.
> 
> I would agree that "versioning" is not a good idea.  However, 
> as I understand it, EAP-TTLSv0 is the only deployed version 
> of TTLS; v1 has never 
> been implemented.   So currently there is no versioning issue 
> with TTLS, and 
> if possible, it would be best if the IETF would not create 
> such a problem.
> 
> It is not clear to me that EAP-TTLS needs "versioning" in 
> order to enable addition of new features in a backwards 
> compatible way, since it already supports a TLV-based 
> extension mechanism.
> 
> 
> 
> _______________________________________________
> Emu mailing list
> Emu at ietf.org
> https://www1.ietf.org/mailman/listinfo/emu
> 

_______________________________________________
Emu mailing list
Emu at ietf.org
https://www1.ietf.org/mailman/listinfo/emu

Follow-Ups:
- RE: [Emu] Thoughts on Password-based EAP Methods
  - From: Ryan Hurst

References:
- RE: [Emu] Thoughts on Password-based EAP Methods
  - From: Bernard Aboba

Prev by Date: [Emu] Re: Next Steps on Passwd-based EAP Methods
Next by Date: Re: AW: [Emu] Re: Next Steps on Passwd-based EAP Methods
Previous by thread: RE: [Emu] Thoughts on Password-based EAP Methods
Next by thread: RE: [Emu] Thoughts on Password-based EAP Methods
Index(es):
- Date
- Thread

RE: [Emu] Thoughts on Password-based EAP Methods

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.