EAP-Authorization IETF 56 (draft-grayson-eap-authorisation-01.txt) - PowerPoint PPT Presentation

About This Presentation
Title:

EAP-Authorization IETF 56 (draft-grayson-eap-authorisation-01.txt)

Description:

Request authorization for services and session ... Uses EAP-TLV chained after authentication. Single TLV type encapsulates different authorization attributes ... – PowerPoint PPT presentation

Number of Views:9
Avg rating:3.0/5.0
Slides: 5
Provided by: josephsalo
Learn more at: https://www.ietf.org
Category:

less

Transcript and Presenter's Notes

Title: EAP-Authorization IETF 56 (draft-grayson-eap-authorisation-01.txt)


1
EAP-AuthorizationIETF 56(draft-grayson-eap-autho
risation-01.txt)
  • Joe Salowey
  • (jsalowey_at_cisco.com)
  • Mark Grayson
  • (mgrayson_at_cisco.com)

2
Motivation
  • Request authorization for services and session
    attributes
  • Peer indicates what is desired, server authorizes
  • Server indicates service and attributes, peer
    authorizes

3
EAP Authorization
  • Uses EAP-TLV chained after authentication
  • Single TLV type encapsulates different
    authorization attributes
  • Authorization data may be sensitive -requires
    encryption and integrity protection
    (PEAP,EAP-TTLS, Protected-TLV)
  • Current Draft describes tunnel authorization,
    other applications possible

4
Open Issues
  • Additional use cases
  • Single TLV approach?
  • Attribute format
  • Standardization of attribute format types
Write a Comment
User Comments (0)
About PowerShow.com