Technical IssuesC/R and EAP Channel binding might be necessary to prevent Man-in-the-Middle attacks. Binding NSLP and NTLP security mechanisms together. Session keys need to be established and used in subsequent messages in order to bind signaling messages to the authentication/authorization step Interworking with NTLP security needs to be studied: Unilateral authentication at the NTLP layer Client authentication at the upper layer 'Lying NAS' problem needs to be addressed. A lot of security specific issues need to be addressed |