Re: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?

To: Zheng Kanghong <zkanghon at hotmail.com>, "tls at ietf.org" <tls at ietf.org>
Subject: Re: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?
From: Yair Elharrar <Yair.Elharrar at audiocodes.com>
Date: Tue, 10 Nov 2009 17:13:25 +0200
Accept-language: en-US
Acceptlanguage: en-US
Delivered-to: tls at core3.amsl.com
In-reply-to: <SNT102-W84B51C4FCAB90E3599CA2DFAB0 at phx.gbl>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <SNT102-W84B51C4FCAB90E3599CA2DFAB0 at phx.gbl>
Thread-index: AcpiFARu5yS9rC5ZT2aJ8QIm9sUb7wAA37oQ
Thread-topic: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?

Right. EAP-TLS wouldn't be vulnerable to this attack.

PEAP might be vulnerable (theoretically), but the attacker would gain nothing by injecting data before the tunnelled EAP.

From: tls-bounces at ietf.org [mailto:tls-bounces at ietf.org] On Behalf Of Zheng Kanghong
Sent: Tuesday, November 10, 2009 08:52
To: tls at ietf.org
Subject: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?

Hi all,

Anyone discussed the implications of the TLS renegotiation vulnerability to EAP-TLS?

From my little understanding, it seems like EAP-TLS is not vulnerable.

There is no application layer protocol involved when EAP-TLS is executed [Please correct me if I'm wrong].
If client certificate authentication is required (it should), the server will always request for client certificates.
After a successful EAP-TLS exchange, the TLS tunnel is not used; only the keying material is exported [Although the tunnel is not used, is it still present and can be used in some way? Or is there no state information stored for the EAP method after a successful EAP exchange?).
EAP re-authentication is a new EAP exchange which is independent of the previous exchange. It is not the same as TLS renegotiation which is executed in the previous TLS tunnel.

Any comments? Thanks.
- kh

This email and any files transmitted with it are confidential material. They are intended solely for the use of the designated individual or entity to whom they are addressed. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, use, distribution or copying of this communication is strictly prohibited and may be unlawful.

If you have received this email in error please immediately notify the sender and delete or destroy any copy of this message

References:
- [TLS] TLS Renegotiation - Any implications to EAP-TLS ?
  - From: Zheng Kanghong

Prev by Date: Re: [TLS] assert TLSext in renego-ServerHello instead of disable renego
Next by Date: Re: [TLS] draft-rescorla-tls-renegotiate and MITM resistance
Previous by thread: [TLS] TLS Renegotiation - Any implications to EAP-TLS ?
Index(es):
- Date
- Thread

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.