| Re: Proposed Resolution to Issue 352: Channel Binding Issue | <– Date –> <– Thread –> |
From: Bernard Aboba (bernard_aboba hotmail.com)
|
|
| Date: Tue, 6 Jun 2006 13:36:53 -0700 (PDT) | |
Sorry for self-responding, but the penultimate sentence does not need to be changed. My suggestion is for the last sentence only.
Here is the new paragraph:
"It is also possible to achieve Channel Bindings without transporting
data over EAP. For example, see [I-D.draft-ohba-eap-channel-binding].
In this approach the EAP method includes Channel Bindings in the
calculation of exported EAP keying material, making it impossible for
the peer and authenticator to complete the Secure Association Protocol
if there is a mismatch in the Channel Bindings.
However, this approach can only be applied where EAP methods
generating key material are used
along with lower layers that utilize the keying material for data frame frame
protection. For example, this mechanism would not enable verification of
Channel Bindings on wired IEEE 802 networks using IEEE 802.1X."
Is this what you intended?
-
Proposed Resolution to Issue 352: Channel Binding Issue Bernard Aboba, June 4 2006
-
Re: Proposed Resolution to Issue 352: Channel Binding Issue Yoshihiro Ohba, June 6 2006
-
Re: Proposed Resolution to Issue 352: Channel Binding Issue Yoshihiro Ohba, June 6 2006
- Re: Proposed Resolution to Issue 352: Channel Binding Issue Bernard Aboba, June 6 2006
- Re: Proposed Resolution to Issue 352: Channel Binding Issue Yoshihiro Ohba, June 6 2006
- Re: Proposed Resolution to Issue 352: Channel Binding Issue Bernard Aboba, June 6 2006
-
Re: Proposed Resolution to Issue 352: Channel Binding Issue Yoshihiro Ohba, June 6 2006
-
Re: Proposed Resolution to Issue 352: Channel Binding Issue Yoshihiro Ohba, June 6 2006
Results generated by Tiger Technologies using MHonArc.