| Issue: Child key expiry | <– Date –> <– Thread –> |
From: Narayanan, Vidya (vidyan qualcomm.com)
|
|
| Date: Mon, 1 May 2006 23:02:31 -0700 (PDT) | |
Submitter name: Vidya Narayanan
Submitter email address: vidyan [at] qualcomm.com
Date first submitted: 5/01/2006
Reference:
Document: Keying Framework
Comment type: 'T'echnical
Priority: '2' May fix
Section: 3.3
Rationale/Explanation of issue:
This section states "When keying material exported by EAP methods
expires, all keying
material derived from the exported keying material expires, including
the TSKs." This seems to indicate that the keys derived from the EMSK
will also be expired when the EMSK expires. It is not yet clear if this
would apply to all kinds of keys derived from the EMSK. There may be
classes of keys derived from the EMSK for which different lifetime
guidelines apply. So, it may be good to clarify that the EMSK usage
documents will specify the guidelines for EMSK-based child keys.
Requested change:
Change
"When keying material exported by EAP methods expires, all keying
material derived from the exported keying material expires, including
the TSKs."
to
"When keying material exported by EAP methods expires, all keying
material derived from the exported keying material expires, including
the TSKs. Note that different lifetime guidelines may be specified in
future specifications for EMSK-based child keys."
-
Issue: Child key expiry Narayanan, Vidya, May 1 2006
- RE: Issue: Child key expiry Nakhjiri Madjid-MNAKHJI1, May 2 2006
Results generated by Tiger Technologies using MHonArc.