[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

WG Action: RECHARTER: EAP Method Update (emu)

To: ietf-announce at ietf.org
Subject: WG Action: RECHARTER: EAP Method Update (emu)
From: IESG Secretary <iesg-secretary at ietf.org>
Date: Wed, 2 Jul 2008 15:45:01 -0700 (PDT)
Cc: emu at ietf.org, aland at deployingradius.com
Delivered-to: ietfarch-ietf-announce-web-archive at core3.amsl.com
Delivered-to: ietf-announce at core3.amsl.com
List-archive: <http://www.ietf.org/pipermail/ietf-announce>
List-help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-id: IETF Announcements <ietf-announce.ietf.org>
List-post: <mailto:ietf-announce@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
Sender: ietf-announce-bounces at ietf.org

The EAP Method Update (emu) working group in the Security Area of the IETF
has been rechartered.  For additional information, please contact the Area
Directors or the working group Chairs.

EAP Method Update (emu)
========================

Last Modified: 2008-05-22

Current Status: Active Working Group

Chair(s):
Joseph Salowey (jsalowey at cisco.com)
Alan DeKok (aland at deployingradius.com)

Security Area Director(s):
Tim Polk (tim.polk at nist.gov)
Pasi Eronen (pasi.eronen at nokia.com)

Security Area Advisor:
Pasi Eronen (pasi.eronen at nokia.com)

Mailing Lists:
General Discussion: emu at ietf.org
To Subscribe: https://www1.ietf.org/mailman/listinfo/emu
Archive: http://www.ietf.org/mail-archive/web/emu/current/index.html

Description of Working Group:

The Extensible Authentication Protocol (EAP) [RFC 3748] is a network
access authentication framework used in the PPP, 802.11, 802.16, VPN,
PANA, and in some functions in 3G networks. EAP itself is a simple
protocol and actual authentication happens in EAP methods.

Over 40 different EAP methods exist. Most of these methods are
proprietary methods, but some are documented in informational RFCs. In
the past the lack of documented, open specifications has been a
deployment and interoperability problem. There are currently only two
EAP methods in the standards track that implement features such as key
derivation that are required for many modern applications.
Authentication types and credentials continue to evolve as do
requirements for EAP methods.

This group is chartered to work on the following types of mechanisms
to meet requirements relevant to EAP methods in RFC 3748, RFC 4017,
RFC 4962 and EAP Keying:

- A mechanism based on strong shared secrets. This mechanism should
strive to be simple and compact for implementation in resource
constrained environments.

- A document that defines EAP channel bindings and provides guidance
for establishing EAP channel bindings within EAP methods.

- Enable TLS-based EAP methods to support channel bindings. This item
will not generate a new method; rather, it will focus on adding
support for EAP channel bindings to the tunneled method (described
below), and if possible, other TLS-based EAP methods. Potential
mechanisms for adding channel binding support will be investigated,
including tunneling of channel binding parameters, or a TLS extension,
or other standard TLS mechanism

- A mechanism to support extensible communication within a TLS
protected tunnel. This mechanism will support meeting the reqFrom ietf-announce-bounces at ietf.org  Wed Jul  2 15:45:04 2008
Return-Path: <ietf-announce-bounces at ietf.org>
X-Original-To: ietf-announce-archive at megatron.ietf.org
Delivered-To: ietfarch-ietf-announce-archive at core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1])
	by core3.amsl.com (Postfix) with ESMTP id BC4403A6CA2;
	Wed,  2 Jul 2008 15:45:03 -0700 (PDT)
X-Original-To: ietf-announce at ietf.org
Delivered-To: ietf-announce at core3.amsl.com
Received: by core3.amsl.com (Postfix, from userid 0)
	id EBB353A6A3C; Wed,  2 Jul 2008 15:45:01 -0700 (PDT)
From: IESG Secretary <iesg-secretary at ietf.org>
To: ietf-announce at ietf.org
Subject: WG Action: RECHARTER: EAP Method Update (emu) 
Mime-Version: 1.0
Message-Id: <20080702224501.EBB353A6A3C at core3.amsl.com>
Date: Wed,  2 Jul 2008 15:45:01 -0700 (PDT)
Cc: emu at ietf.org, aland at deployingradius.com
X-BeenThere: ietf-announce at ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF Announcements <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>,
	<mailto:ietf-announce-request at ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/ietf-announce>
List-Post: <mailto:ietf-announce at ietf.org>
List-Help: <mailto:ietf-announce-request at ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>,
	<mailto:ietf-announce-request at ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-announce-bounces at ietf.org
Errors-To: ietf-announce-bounces at ietf.org

The EAP Method Update (emu) working group in the Security Area of the IETF
has been rechartered.  For additional information, please contact the Area
Directors or the working group Chairs.

EAP Method Update (emu)
========================

Last Modified: 2008-05-22

Current Status: Active Working Group

Chair(s):
Joseph Salowey (jsalowey at cisco.com)
Alan DeKok (aland at deployingradius.com)

Security Area Director(s):
Tim Polk (tim.polk at nist.gov)
Pasi Eronen (pasi.eronen at nokia.com)

Security Area Advisor:
Pasi Eronen (pasi.eronen at nokia.com)

Mailing Lists:
General Discussion: emu at ietf.org
To Subscribe: https://www1.ietf.org/mailman/listinfo/emu
Archive: http://www.ietf.org/mail-archive/web/emu/current/index.html

Description of Working Group:

The Extensible Authentication Protocol (EAP) [RFC 3748] is a network
access authentication framework used in the PPP, 802.11, 802.16, VPN,
PANA, and in some functions in 3G networks. EAP itself is a simple
protocol and actual authentication happens in EAP methods.

Over 40 different EAP methods exist. Most of these methods are
proprietary methods, but some are documented in informational RFCs. In
the past the lack of documented, open specifications has been a
deployment and interoperability problem. There are currently only two
EAP methods in the standards track that implement features such as key
derivation that are required for many modern applications.
Authentication types and credentials continue to evolve as do
requirements for EAP methods.

This group is chartered to work on the following types of mechanisms
to meet requirements relevant to EAP methods in RFC 3748, RFC 4017,
RFC 4962 and EAP Keying:

- A mechanism based on strong shared secrets. This mechanism should
strive to be simple and compact for implementation in resource
constrained environments.

- A document that defines EAP channel bindings and provides guidance
for establishing EAP channel bindings within EAP methods.

- Enable TLS-based EAP methods to support channel bindings. This item
will not generate a new method; rather, it will focus on adding
support for EAP channel bindings to the tunneled method (described
below), and if possible, other TLS-based EAP methods. Potential
mechanisms for adding channel binding support will be investigated,
including tunneling of channel binding parameters, or a TLS extension,
or other standard TLS mechanism

- A mechanism to support extensible communication within a TLS
protected tunnel. This mechanism will support meeting the requirementuirements
of an enhanced TLS mechanism, a password based authentication
mechanism, and additional inner authentication mechanisms. It will
also support channel bindings (as described above) in order to meet
RFC 4962 requirements.

- A mechanism that makes use of existing password databases such as AAA
databases. This item will be based on the above tunnel method.

Goals and Milestones:

Jun 2008 Submit Tunnel and Password Method requirements first Draft
Sep 2008 Submit EAP Channel Bindings First Draft
Sep 2008 Submit Tunnel Method first draft
Oct 2008 Submit TLS based method channel binding first draft
Oct 2008 Submit Password Method first draft
Jan 2009 Send EAP Channel Bindings to IESG
Mar 2009 Send Tunnel Method to IESG
Apr 2009 Send TLS based method channel binding to IESG
Apr 2009 Send Password based method to IESG
_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www.ietf.org/mailman/listinfo/ietf-announce


s
of an enhanced TLS mechanism, a password based authentication
mechanism, and additional inner authentication mechanisms. It will
also support channel bindings (as described above) in order to meet
RFC 4962 requirements.

- A mechanism that makes use of existing password databases such as AAA
databases. This item will be based on the above tunnel method.

Goals and Milestones:

Jun 2008 Submit Tunnel and Password Method requirements first Draft
Sep 2008 Submit EAP Channel Bindings First Draft
Sep 2008 Submit Tunnel Method first draft
Oct 2008 Submit TLS based method channel binding first draft
Oct 2008 Submit Password Method first draft
Jan 2009 Send EAP Channel Bindings to IESG
Mar 2009 Send Tunnel Method to IESG
Apr 2009 Send TLS based method channel binding to IESG
Apr 2009 Send Password based method to IESG
_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www.ietf.org/mailman/listinfo/ietf-announce

Prev by Date: WG Review: Recharter of Benchmarking Methodology Working Group (bmwg)
Next by Date: Protocol Action: 'Basic Specification for IP Fast-Reroute: Loop-free Alternates' to Proposed Standard
Previous by thread: WG Review: Recharter of Benchmarking Methodology Working Group (bmwg)
Next by thread: Protocol Action: 'Basic Specification for IP Fast-Reroute: Loop-free Alternates' to Proposed Standard
Index(es):
- Date
- Thread