| Re: FW: [eap] Re: EAP key binding discussion | <– Date –> <– Thread –> |
From: Bernard Aboba (aboba internaut.com)
|
|
| Date: Thu, 28 Apr 2005 00:49:57 -0400 (EDT) | |
> Sorry for the late response to this. I have written something up. It is > more a problem statement than a solution proposal. Basically because I > was not sure whether sending the AAA key to some place other than an > authenticator is against EAP key management principals. The Housley Criteria are described in RFC 4017 as well as the EAP Key Management framework. In particular, I would pay attention to the "Confidentiality" condition (which prohibits disclosure of keys to parties outside the peer, server and authenticator), the "mutual authentication" condition which requires mutual authentication between all parties, and the "domino effect" condition which prevents compromise of one party from affecting other parties.
-
FW: [eap] Re: EAP key binding discussion Nakhjiri Madjid-MNAKHJI1, April 27 2005
- Re: FW: [eap] Re: EAP key binding discussion Bernard Aboba, April 27 2005
-
RE: FW: [eap] Re: EAP key binding discussion Nakhjiri Madjid-MNAKHJI1, April 28 2005
- RE: FW: [eap] Re: EAP key binding discussion Bernard Aboba, April 28 2005
-
Re: FW: [eap] Re: EAP key binding discussion Jari Arkko, April 29 2005
- Re: FW: [eap] Re: EAP key binding discussion Bernard Aboba, April 29 2005
Results generated by Tiger Technologies using MHonArc.