| Re: Strawman -10 | <– Date –> <– Thread –> |
From: Jari Arkko (jari.arkko piuha.net)
|
|
| Date: Sun, 5 Mar 2006 11:32:07 -0800 (PST) | |
Bernard Aboba wrote:
--Jari
The problem with the lower layer usage of EMSK is that we know that its quite likely there will be some link layer which gets the key generation wrong. At that point, the EMSK is compromised for other link layers, too.
What other link layers? The document talks about "the lower layer" throughout, not multiple lower layers.
True. But what we are doing in the key management framework does also have an effect on future use of EAP. I am convinced that we will see cross-access technology handover optimizations. If we do not keep parts of the key hierarchy "safe" for such extensions, we'll be in trouble later.
Anyway, -10 keeps EMSK safe, so I have no problem with the current document.
(But there are different variations of "safe" -- your approach and what Joe has been advocating. More on that in subsequent e-mails.)
--Jari
- Channel binding approaches (Was: Re: [eap] Strawman -10), (continued)
- Channel binding approaches (Was: Re: [eap] Strawman -10) Jari Arkko, March 5 2006
- Re: Channel binding approaches (Was: Re: [eap] Strawman -10) Yoshihiro Ohba, March 8 2006
- Re: Strawman -10 Bernard Aboba, February 7 2006
- Re: Strawman -10 Jari Arkko, March 5 2006
Results generated by Tiger Technologies using MHonArc.