| Comments on draft-ietf-eap-keying-08b.txt | <– Date –> <– Thread –> |
From: Thomas Otto (t.otto sharevolution.de)
|
|
| Date: Wed, 30 Nov 2005 13:49:43 -0800 (PST) | |
Three brief comments to http://www.drizzle.com/~aboba/EAP/draft-ietf-eap-keying-08b.txt. 1) Some "independences" are capitalized, others not, e.g. 1.4.2 ... media independence 1.4.3 ... Media Independence ... 2) It seems there is an inconsistency regarding what an EAP method exports. Figure 1 shows that an EAP method exports MSK,EMSK,IV, Peer-ID,Server-ID, Method-ID,Key-Lifetime. Section 2.2 now says "In completion of EAP authentication, EAP methods on the peer and EAP server export the Master Session Key (MSK), Extended Master Session Key (EMSK), Initialization Vector (IV), Peer-ID, Server-ID, Session-ID and Key-Lifetime." I think 2.2 must be "Method-ID". 3) Section 3.6. says, "it is RECOMMENDED that EAP methods utilizing public key cryptography choose a public key that has a cryptographic strength meeting the symmetric key strength" I'm not sure why you say "recommended" here? What else could one do? RFC 3748 says: "EAP methods supporting key derivation SHOULD be capable of generating an MSK and EMSK, each with an effective key strength of at least 128 bits." This implies that the effective key strength of public key cryptography must be (rougly) equivalent to that of symmetric key cryptography. In this context, the following statement of RFC 4017 appears wrong (at least for me). Neither says RFC 3748, that an EAP method MUST derive a MSK and EMSK, nor that the effective key strength MUST be 128 bit. "Key strength. An EAP method suitable for use with IEEE 802.11 MUST be capable of generating keying material with 128-bits of effective key strength, as defined in [RFC3748], Section 7.2.1."
-
Comments on draft-ietf-eap-keying-08b.txt Thomas Otto, November 30 2005
- Re: Comments on draft-ietf-eap-keying-08b.txt Jari Arkko, December 13 2005
Results generated by Tiger Technologies using MHonArc.