Re: [Emu] Review of draft-clancy-emu-eap-shared-secret-01
Jouni Malinen <jkmaline@cc.hut.fi> Sun, 16 July 2006 17:23 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1G2ALR-0003EW-JW; Sun, 16 Jul 2006 13:23:53 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1G2ALQ-0003ER-4d for emu@ietf.org; Sun, 16 Jul 2006 13:23:52 -0400
Received: from mail2.genealogia.fi ([194.100.116.229]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1G2ALN-0001CY-Ld for emu@ietf.org; Sun, 16 Jul 2006 13:23:52 -0400
Received: from dsl017-049-110.sfo4.dsl.speakeasy.net ([69.17.49.110] helo=jm) by mail2.genealogia.fi with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.50) id 1G2AKo-000753-Tx; Sun, 16 Jul 2006 20:23:16 +0300
Received: by jm (sSMTP sendmail emulation); Sun, 16 Jul 2006 10:22:29 -0700
Date: Sun, 16 Jul 2006 10:22:29 -0700
From: Jouni Malinen <jkmaline@cc.hut.fi>
To: "M. Vanderveen" <mvandervn@yahoo.com>
Subject: Re: [Emu] Review of draft-clancy-emu-eap-shared-secret-01
Message-ID: <20060716172229.GE18824@jm.kir.nu>
References: <7.0.1.0.2.20060711072555.043cf6c0@qualcomm.com> <20060712165015.57845.qmail@web54402.mail.yahoo.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20060712165015.57845.qmail@web54402.mail.yahoo.com>
User-Agent: Mutt/1.5.11
X-Spam-Score: -2.6 (--)
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 2409bba43e9c8d580670fda8b695204a
Cc: emu@ietf.org
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/emu>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
Errors-To: emu-bounces@ietf.org
On Wed, Jul 12, 2006 at 09:50:15AM -0700, M. Vanderveen wrote: > Personally I'm somewhat disappointed that AES-EAX was chosen, even though it's fame is that is simpler than CCM, which is what 802.11i proposes. Not having participated in the discussions on algorithm selection, I am wondering if anybody have given thought to what can be done to help the power and memory-limited mobile, who now has to have *hardware* to please everybody: the EAP for network access, SAP 4-way handshake for link-layer access, MobileIP for mobility, VPN to sooothe operator concerns, etc, to name a few possibilities. Not all of these must be done in hw, of course. What do the implementors have to say about these? It depends.. So far, I have only needed to implement AES-EAX because of EAP-PSK and now EAP-GPSK, i.e., I haven't needed it for anything else in IEEE 802.11/802.1X/EAP area. I did need to implement CCM for IEEE 802.11i. However, it is used only for data frame encryption/decryption (IEEE 802.11i uses AES key wrap algorithm, RFC 3394, in higher layer operations) and in many designs, it is not easily available for the EAP implementation. CCMP (AES-CCM) may be implemented in the hardware/ firmware/device driver and there may not be an interface for the EAP server/peer (usually, a user space application) to access the same implementation. Sure, it is possible to re-use the same code, but that may not be the most common solution. In addition, adding another mode of AES in software is not really taking that much space. In other words, I'm not too concerned from the view point of implementation size of EAX vs. CCM. However, I would have to admit that it would have been easier to implement EAP-PSK (and now GPSK) if CCM had been used instead of EAX since I first had to figure out what exactly EAX is doing whereas I was already familiar with CCM because of IEEE 802.11i background. -- Jouni Malinen PGP id EFC895FA _______________________________________________ Emu mailing list Emu@ietf.org https://www1.ietf.org/mailman/listinfo/emu
- [Emu] Review of draft-clancy-emu-eap-shared-secre… Lakshminath Dondeti
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… M. Vanderveen
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Lakshminath Dondeti
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Hannes Tschofenig
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Hannes Tschofenig
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Lakshminath Dondeti
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Hannes Tschofenig
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Charles Clancy
- Re: [Emu] Review of draft-clancy-emu-eap-shared-s… Jouni Malinen