[Emu] Re: Last call comments:draft-williams-on-channel-binding-01.txt: EAP chann

To: j at w1.fi, clancy at cs.umd.edu
Subject: [Emu] Re: Last call comments:draft-williams-on-channel-binding-01.txt: EAP chann
From: "Bernard Aboba" <bernard_aboba at hotmail.com>
Date: Sat, 07 Apr 2007 17:22:43 -0700
Bcc:
Cc: hartmans-ietf at mit.edu, bernarda at microsoft.com, ietf at ietf.org, Nicolas.Williams at sun.com, emu at ietf.org
In-reply-to: <20070408000818.GN16197@jm.kir.nu>
List-archive: <http://www1.ietf.org/pipermail/emu>
List-help: <mailto:emu-request@ietf.org?subject=help>
List-id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-post: <mailto:emu@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>

This is something that IEEE 802.11r/D5.0 is doing. R0KH-ID is set to the
identity of the NAS Client (e.g., NAS-Identifier if RADIUS is used as
the backend protocol) and this identifier is sent to the peer during
association (before EAP authentication). In addition, both the R0KH-ID
(NAS-Identifier) and R1KH-ID (authenticator MAC address) are mixed in
into the key derivation after the EAP authentication.

I would also add that IEEE 802.11r binds the R1KH-ID and the AP BSSID/MAC address during the post-EAP handshake. IEEE 802.11r also advertises the set of authenticators within which fast handoff is possible via the Mobility Domain IE. Currently there is no equivalent AAA attribute to carry that, but once there is (it has been discussed in RADEXT WG), it will also be possible to verify this parameter within EAP Channel Bindings.

_______________________________________________
Emu mailing list
Emu at ietf.org
https://www1.ietf.org/mailman/listinfo/emu

References:
- Re: [Emu] Last call comments: draft-williams-on-channel-binding-01.txt: EAP channel bindings
  - From: Jouni Malinen

Prev by Date: Re: [Emu] Last call comments: draft-williams-on-channel-binding-01.txt: EAP channel bindings
Next by Date: [Emu] Re: Last call comments: draft-williams-on-channel-binding-01.txt: EAP channel bindings
Previous by thread: Re: [Emu] Last call comments: draft-williams-on-channel-binding-01.txt: EAP channel bindings
Next by thread: Re: [Emu] Last call comments: draft-williams-on-channel-binding-01.txt: EAP channel bindings
Index(es):
- Date
- Thread

[Emu] Re: Last call comments:draft-williams-on-channel-binding-01.txt: EAP chann

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.