[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New Radius/Diameter authentication and key delivery for FMIP application

To: "Nelson, David" <dnelson@enterasys.com>
Subject: Re: New Radius/Diameter authentication and key delivery for FMIP application
From: Jari Arkko <jari.arkko@piuha.net>
Date: Tue, 19 Sep 2006 19:07:17 +0300
Cc: AAA Doctors <aaa-doctors@ops.ietf.org>, sec-ads@tools.ietf.org, ops-ads@tools.ietf.org, mipshop-chairs@tools.ietf.org, "Narayanan, Vidya" <vidyan@qualcomm.com>
In-reply-to: <3CFB564E055A594B82C4FE89D21565605A48F6@MABOSEVS2.ets.enterasys.com>
References: <3CFB564E055A594B82C4FE89D21565605A48F6@MABOSEVS2.ets.enterasys.com>
User-agent: Mozilla Thunderbird 1.0.8 (X11/20060725)

Nelson, David wrote:

>Does anyone know how this work is different from the RADIUS KeyWrap and
>RADIUS KeyReq work that Glen Zorn as proposed (and likely implemented)?
>
>http://www.ietf.org/internet-drafts/draft-zorn-radius-keywrap-10.txt
>
>http://www.ietf.org/internet-drafts/draft-zorn-radius-keyreq-06.txt
>  
>
My understanding is that the Zorn proposal is a free-standing, separate
keying transaction that assumes the existence of a prior, regular AAA
transaction such as EAP over RADIUS.

Vidya's proposal combines both the authentication and the key
request aspects in the one 2-message exchange. It cannot
handle EAP or any other type of authentication; it relies on
its own authentication scheme.

--Jari

References:
- RE: New Radius/Diameter authentication and key delivery for FMIP application
  - From: "Nelson, David" <dnelson@enterasys.com>

Prev by Date: RE: New Radius/Diameter authentication and key delivery for FMIP application
Next by Date: Re: RADIUS attribute space situation and WGs wanting to add attributes
Previous by thread: RE: New Radius/Diameter authentication and key delivery for FMIP application
Next by thread: Re: New Radius/Diameter authentication and key delivery for FMIP application
Index(es):
- Date
- Thread