Pre-Shared%20Key%20EAP%20methods%20 - PowerPoint PPT Presentation

About This Presentation
Title:

Pre-Shared%20Key%20EAP%20methods%20

Description:

Individual submissions (work in progress): EAP-FAST ... Nobody is currently chartered to develop EAP methods at IETF, not even EAP WG ... – PowerPoint PPT presentation

Number of Views:101
Avg rating:3.0/5.0
Slides: 8
Provided by: DTL5
Learn more at: https://www.ietf.org
Category:

less

Transcript and Presenter's Notes

Title: Pre-Shared%20Key%20EAP%20methods%20


1
Pre-Shared Key EAP methods EAP-PSK
  • IETF 60 San Diego, USA
  • March 2004

2
Are there Pre-Shared Key EAP methods out there?
  • Standard
  • MD5-Challenge RFC3748 - deprecated for security
    reasons
  • Individual submissions (work in progress)
  • EAP-FAST
  • EAP-SIM/AKA - designed for GSM/UMTS
    authentication infrastructure
  • EAP-PSK
  • EAP-PAX
  • EAP-TLS - when Pre-Shared Key support is added
    I-D.ietf-tls-psk-00
  • EAP-IKEv2
  • Individual submissions (work abandoned)
  • EAP-Archie
  • EAP-SKE

3
Developing high-quality standard EAP methods
  • Nobody is currently chartered to develop EAP
    methods at IETF, not even EAP WG
  • EAP without EAP method is like a pizza without
    toppings useless!
  • There are however (very) good reasons to develop
    Pre-Shared Key EAP methods
  • They are the simplest ones start with the easy
    tasks before moving on to more complicated ones!
  • They would provide insights on EAP rather than
    adding features to EAP, we perhaps want to make
    sure that EAP works well!
  • They are needed in many usage scenarios
  • What do we want to do?

4
Tentative requirements for a Pre-Shared Key EAP
method
  • Pre-Shared Key not Password - IPR issues with
    ZKPPs
  • Lightweight - use only symmetric cryptography
  • Standalone - why develop methods that accommodate
    various types of credentials isn't it redundant
    with EAP?
  • Available quickly - people don't want to wait
    more
  • IPR free
  • Secure...

5
EAP-PSK status
  • EAP-PSK is a proposed solution to the community
  • Current status
  • draft-bersani-eap-psk-03 published
  • Open source implementation available
    athttp//perso.rd.francetelecom.fr/bersani/

6
EAP-PSK next steps
  • Slight rework to include explicit session
    identifiers
  • draft-bersani-eap-psk-04 should be published by
    September 2004
  • And then, after security review by experts
  • Go informational
  • Or will there be a standardization effort?
  • Release Open source implementations
  • On two different platforms
  • Develop extensions for EAP-PSK

7
Any feedback welcome!
Florent Bersani, France Telecom
RD florent.bersani_at_francetelecom.com
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Pre-Shared%20Key%20EAP%20methods%20" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!