[Emu] EAP and Transport Protocol

"Dr. Pala" <director@openca.org> Mon, 01 April 2019 10:45 UTC

Return-Path: <director@openca.org>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 78F0412008F for <emu@ietfa.amsl.com>; Mon, 1 Apr 2019 03:45:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 2.608
X-Spam-Level: **
X-Spam-Status: No, score=2.608 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DATE_IN_PAST_96_XX=3.405, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_HK_NAME_DR=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2bU5nKY8zP8u for <emu@ietfa.amsl.com>; Mon, 1 Apr 2019 03:45:50 -0700 (PDT)
Received: from mail.katezarealty.com (mail.katezarealty.com [104.168.158.213]) by ietfa.amsl.com (Postfix) with ESMTP id 377F112007A for <emu@ietf.org>; Mon, 1 Apr 2019 03:45:50 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mail.katezarealty.com (Postfix) with ESMTP id DA9E53741026 for <emu@ietf.org>; Mon, 1 Apr 2019 10:45:49 +0000 (UTC)
X-Virus-Scanned: amavisd-new at katezarealty.com
Received: from mail.katezarealty.com ([127.0.0.1]) by localhost (mail.katezarealty.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id JpcrcWqG8zW7 for <emu@ietf.org>; Mon, 1 Apr 2019 06:45:49 -0400 (EDT)
Received: from CableLabsMacWork.hsd1.co.comcast.net (c-73-203-120-205.hsd1.co.comcast.net [73.203.120.205]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.katezarealty.com (Postfix) with ESMTPSA id B213437408A3 for <emu@ietf.org>; Mon, 1 Apr 2019 06:45:48 -0400 (EDT)
To: EMU WG <emu@ietf.org>
From: "Dr. Pala" <director@openca.org>
Organization: OpenCA Labs
Message-ID: <33af57b3-950b-20e2-7aae-7fea8d07b283@openca.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.5.1
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------854FB0E768F2E36587F9196D"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/nLMpJAZ_2w0fv2j28iuAUsFeWwA>
Subject: [Emu] EAP and Transport Protocol
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
Date: Mon, 01 Apr 2019 10:45:52 -0000
X-Original-Date: Fri, 8 Mar 2019 15:51:53 -0700
X-List-Received-Date: Mon, 01 Apr 2019 10:45:52 -0000

Hi EMU-ers,

being fairly new to the EAP world, I noticed that in some environment, 
EAP is layered on top of other protocols - in particular RADIUS and 
DIAMETER. I guess that in some environments this make sense because of 
accounting purposes across operators, however this makes the protocol 
stack quite complicated.

In particular, I was working on the definition of a PAM module to 
provide SSH credentials delegation and I wanted to use EAP - however, I 
could not find an implementation of EAP-over-TLS that could be easily 
used. In particular, the use of the

-- 
Best Regards,
Massimiliano Pala, Ph.D.
OpenCA Labs Director
OpenCA Logo