nsis-10----Page:9
1  2  3  4  5  6  7  8  9  10  11  12  13  14 

Technical IssuesC/R and EAP Channel binding might be necessary to prevent Man-in-the-Middle attacks. Binding NSLP and NTLP security mechanisms together. Session keys need to be established and used in subsequent messages in order to bind signaling messages to the authentication/authorization step Interworking with NTLP security needs to be studied: Unilateral authentication at the NTLP layer Client authentication at the upper layer 'Lying NAS' problem needs to be addressed. A lot of security specific issues need to be addressed

PPT Version