| Re: What about PSK with TLS and IKEv2? | <– Date –> <– Thread –> |
From: T. Charles Clancy (clancy cs.umd.edu)
|
|
| Date: Fri, 13 Aug 2004 02:55:08 -0400 (EDT) | |
> The RFC 2246 defines resumed handshake so that the session can be > resumed if it is still in the memory (cache). One TLS-PSK contribution > requires to copy the session to the disk instead of the cache. True, but the TLS resume still requires 2 round trips, and as much computation as a full reauthentication. In the PSK case, I don't think the TLS resume is all that useful. > So where is the overcomplicated things in that; especially where TLS is > used with almost all EAP methods. Just because other methods use it doesn't mean it's the right thing to do in the PSK case. TLS was designed for public-key environments, and I agree it's probably the right thing to use for public-key authentication. We obviously have a difference of opinion, and aren't going to change each others' mind. The pros and cons can be argued from both directions. [ t. charles clancy ]--[ tcc [at] umd.edu ]--[ www.cs.umd.edu/~clancy ] [ computer science ]-----[ university of maryland | college park ]
- Re: Proposed resolution of issue 251, (continued)
-
Re: Proposed resolution of issue 251 Jari Arkko, August 10 2004
- Re: Proposed resolution of issue 251 Yoshihiro Ohba, August 10 2004
-
Re: Proposed resolution of issue 251 John Vollbrecht, August 10 2004
-
Re: What about PSK with TLS and IKEv2? Mohamad Badra, August 10 2004
- Re: What about PSK with TLS and IKEv2? T. Charles Clancy, August 12 2004
- Re: What about PSK with TLS and IKEv2? Mohamad Badra, August 13 2004
- Re: What about PSK with TLS and IKEv2? T. Charles Clancy, August 15 2004
- RE: What about PSK with TLS and IKEv2? Joseph Salowey, August 16 2004
-
Re: What about PSK with TLS and IKEv2? Mohamad Badra, August 10 2004
-
Re: Proposed resolution of issue 251 Jari Arkko, August 10 2004
- Re: Proposed resolution of issue 251 Yoshihiro Ohba, August 10 2004
Results generated by Tiger Technologies using MHonArc.