Re: comments on draft-houseley-aaa-key-mgmt-07.txt

To: Sam Hartman <hartmans-ietf at mit.edu>
Subject: Re: comments on draft-houseley-aaa-key-mgmt-07.txt
From: Lakshminath Dondeti <ldondeti at qualcomm.com>
Date: Sat, 17 Feb 2007 09:35:39 -0800
Cc: bernarda at microsoft.com, Dan Harkins <dharkins at lounge.org>, ietf at ietf.org
In-reply-to: <tslfy947pol.fsf@cz.mit.edu>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <41825.12.108.168.179.1171660575.squirrel@www.trepanning.net> <tslwt2hiybm.fsf@cz.mit.edu> <C24CB51D5AA800449982D9BCB90325134F192B@NAEX13.na.qualcomm.com> <tslfy947pol.fsf@cz.mit.edu>
User-agent: Thunderbird 2.0b2 (Windows/20070116)

Sam,

The problem of an entity in the middle giving disparate information to the peer and the server is in fact easier to solve than the problem Vidya summarized. The disparate information problem has been described in the EAP Keying Framework document and elsewhere too.

To my understanding, we are beyond that point in the discussion in HOKEY and considering the new case of the entity in the middle lying to both sides and attempting to get a key that another entity in the middle is supposed to get.

Let me put it this way, both issues are considered problems to address/solve in this case.

regards,
Lakshminath

Sam Hartman wrote:

Vidya, I found the model you proposed didn't fit what Dan was talking
about very well.  In particular, Dan wants to focus on problems
resulting from the fact that the name of the authenticator used
between the peer and the authenticator may be different than the name
of the authenticator used between the authenticator and the AAA
server.  That distinction did not figure prominently enough in your
argument that I could tell whether you and Dan are talking about the
same thing nor whether I could even tell if I agreed with you.  I'd
recommend refocusing your model on this distinction; I think once you
do we may well make significant progress on discussing a long-standing
issue.

--Sam


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- RE: comments on draft-houseley-aaa-key-mgmt-07.txt
  - From: Narayanan, Vidya

References:
- comments on draft-houseley-aaa-key-mgmt-07.txt
  - From: Dan Harkins
- Re: comments on draft-houseley-aaa-key-mgmt-07.txt
  - From: Sam Hartman
- RE: comments on draft-houseley-aaa-key-mgmt-07.txt
  - From: Narayanan, Vidya
- Re: comments on draft-houseley-aaa-key-mgmt-07.txt
  - From: Sam Hartman

Prev by Date: Re: comments on draft-houseley-aaa-key-mgmt-07.txt
Next by Date: Does our passport need to be valid for 6 months to go to Prague?
Previous by thread: Re: comments on draft-houseley-aaa-key-mgmt-07.txt
Next by thread: RE: comments on draft-houseley-aaa-key-mgmt-07.txt
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: comments on draft-houseley-aaa-key-mgmt-07.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.