| RE: Proposed Resolution to Issue 311: EAP and Authorization | <– Date –> <– Thread –> |
From: Salowey, Joe (jsalowey cisco.com)
|
|
| Date: Sun, 15 Jan 2006 19:03:53 -0800 (PST) | |
> -----Original Message----- > From: Bernard Aboba [mailto:bernard_aboba [at] hotmail.com] > Sent: Sunday, January 08, 2006 10:27 AM > To: eap [at] frascone.com > Subject: [eap] Proposed Resolution to Issue 311: EAP and Authorization > > The text of Issue 311 is available here: > http://www.drizzle.com/~aboba/EAP/eapissues3.html#Issue%20311 > > The proposed resolution is as follows: > > In Section 1.3, change: > > " The EAP server also > stores the peer's identity and/or other information necessary to > decide whether access to some service should be granted. The peer > stores information necessary to choose which secret to use > for which > service. > > If authentication is based on proof of possession of the > private key > corresponding to the public key contained within a certificate, the > parties store the EAP method to be used and the trust > anchors used to > validate the certificates. The EAP server also stores the peer's > identity and/or other information necessary to decide > whether access > to some service should be granted. The peer stores information > necessary to choose which certificate to use for which service." > > To: > > "The EAP server also stores the peer's identity as well as > other information > associated with it. This information may be used to determine > whether access > to some service should be granted. The peer > stores information necessary to choose which secret to use for which > service. > > If authentication is based on proof of possession of the private key > corresponding to the public key contained within a certificate, the > parties store the EAP method to be used and the trust anchors used to > validate the certificates. The EAP server also stores the peer's > identity [Joe] why is it necessary that the EAP server store the peer's identity in this case? > and the peer stores information > necessary to choose which certificate to use for which service." > > > _________________________________________________________________ > To unsubscribe or modify your subscription options, please visit: > http://lists.frascone.com/mailman/listinfo/eap > > Arhives: http://lists.frascone.com/pipermail/eap >
-
Proposed Resolution to Issue 311: EAP and Authorization Bernard Aboba, January 8 2006
- RE: Proposed Resolution to Issue 311: EAP and Authorization Alper Yegin, January 10 2006
- RE: Proposed Resolution to Issue 311: EAP and Authorization Salowey, Joe, January 15 2006
- RE: Proposed Resolution to Issue 311: EAP and Authorization Bernard Aboba, January 16 2006
- RE: Proposed Resolution to Issue 311: EAP and Authorization Salowey, Joe, January 25 2006
Results generated by Tiger Technologies using MHonArc.