Re: [Pana] pana-preauth-06 available

To: Basavaraj.Patil at nokia.com
Subject: Re: [Pana] pana-preauth-06 available
From: Yoshihiro Ohba <yoshihiro.ohba at toshiba.co.jp>
Date: Tue, 07 Jul 2009 10:13:24 -0400
Cc: pana at ietf.org
Delivered-to: pana at core3.amsl.com
In-reply-to: <C66E5467.2A6EE%basavaraj.patil at nokia.com>
List-archive: <http://www.ietf.org/mail-archive/web/pana>
List-help: <mailto:pana-request@ietf.org?subject=help>
List-id: Protocol for carrying Authentication for Network Access <pana.ietf.org>
List-post: <mailto:pana@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=unsubscribe>
References: <C66E5467.2A6EE%basavaraj.patil at nokia.com>
User-agent: Thunderbird 2.0.0.22 (Windows/20090605)

Basavaraj.Patil at nokia.com wrote:

Hi Yoshi,


On 6/27/09 7:21 PM, "ext Yoshihiro Ohba" <yoshihiro.ohba at toshiba.co.jp>
wrote:

Changes:

- Revised definition of "Serving Network".

- Added an informational reference for 802.21 as an example mechanism
for discovering PaC and CPAA to discover each other.

Basavaraj questioned about the need for PAA-initiated pre-auth, and I
agreed with his comment. But
PAA-initiated pre-auth still remains, based on Alper's comment "PANA
already supports PAA-initiated auth. So, unless we do anything special
(to eliminate this case), it comes for free."


Even though PANA supports PAA-initiated auth, I do not believe this is
applicable in the case where the target network to which the host is not
even attached would be able to trigger authentication.
So while the PAA-initiated auth makes sense in the regular PANA use case, I
don't see this as being valid in the scenario described in the pre-auth I-D.

The target network can trigger PAA-initiated preauth without requiringMN to attach to the target network, with the help of the servingnetwork. For example, 802.21 network-to-network handover command allowsthe serving network to indicate the target network about a possiblehandover of the MN.


Yoshihiro Ohba

So I would recommend dropping this scenario from the I-D.

-Raj

Best Regards,
Yoshihiro Ohba

_______________________________________________
Pana mailing list
Pana at ietf.org
https://www.ietf.org/mailman/listinfo/pana

References:
- Re: [Pana] pana-preauth-06 available
  - From: Basavaraj.Patil

Prev by Date: [Pana] I-D Action:draft-ietf-pana-statemachine-13.txt
Next by Date: [Pana] RFC 5609 on State Machines for the Protocol for Carrying Authentication for Network Access (PANA)
Previous by thread: Re: [Pana] pana-preauth-06 available
Next by thread: [Pana] Document Action: 'State Machines for Protocol for Carrying Authentication for Network Access (PANA)' to Informational RFC
Index(es):
- Date
- Thread

Re: [Pana] pana-preauth-06 available

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.