[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Crypto-agility work item

To: radiusext@ops.ietf.org
Subject: Crypto-agility work item
From: "Bernard Aboba" <bernard_aboba@hotmail.com>
Date: Fri, 24 Feb 2006 12:06:20 -0800
Bcc:
In-reply-to: <3CFB564E055A594B82C4FE89D2156560219097@MABOSEVS2.ets.enterasys.com>

The fundamental goal of this work is to develop an openly specified, secure,interoperable mechanism for the negotiation of cryptographic algorithmswithin RADIUS. This includes algorithms for per-packet authentication andintegrity protection, as well as keywrap.

The focus is on negotiation of cryptographic algorithms for existing RADIUSsecurity mechanisms. It is not about fundamental changes to the RADIUSsecurity model, or changes to AAA key management models (that work isoccurring in EAP WG).

While this work item may enable implementations to satisfy FIPS 140-2requirements, there are no guarantees that NIST will bless the resultingspecification, or that the algorithms to be supported will remain on thelist of FIPS 140-2 approved algorithms indefinitely.




--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- RADIUS Keywrap (was RE: RADEXT Milestone revisions)
  - From: "Nelson, David" <dnelson@enterasys.com>

Prev by Date: RADIUS Keywrap (was RE: RADEXT Milestone revisions)
Next by Date: RE: Crypto-agility work item
Previous by thread: RADIUS Keywrap (was RE: RADEXT Milestone revisions)
Next by thread: RE: Crypto-agility work item
Index(es):
- Date
- Thread