IETF Logo Mail Archive

Re: [HOKEY] REMINDER: WGLC on draft-ietf-hokey-erp-aak-04

Zhen Cao <zehn.cao@gmail.com> Thu, 29 September 2011 03:57 UTC

Return-Path: <zehn.cao@gmail.com>
X-Original-To: hokey@ietfa.amsl.com
Delivered-To: hokey@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE89F11E80CC for <hokey@ietfa.amsl.com>; Wed, 28 Sep 2011 20:57:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.309
X-Spam-Level:
X-Spam-Status: No, score=-3.309 tagged_above=-999 required=5 tests=[AWL=0.290, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PIfDZ0r6C19Q for <hokey@ietfa.amsl.com>; Wed, 28 Sep 2011 20:57:35 -0700 (PDT)
Received: from mail-gy0-f172.google.com (mail-gy0-f172.google.com [209.85.160.172]) by ietfa.amsl.com (Postfix) with ESMTP id BE35011E808D for <hokey@ietf.org>; Wed, 28 Sep 2011 20:57:18 -0700 (PDT)
Received: by gyd12 with SMTP id 12so211977gyd.31 for <hokey@ietf.org>; Wed, 28 Sep 2011 21:00:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=RjrMUJF7BvM86HnTJltN+Npfx5yIFn2fPV8usfFCLTI=; b=pCF02PvzldCN/dIUHYUv5XcO+aFrf7CqtxMayebKxWfDMq69AC+IH7XbdkPHb4qYLW lSyrPmBn3zAe9SXOCFyarC1o8IhDUOxXk82GFt0XT0p8NbYPBTYh8sCzST/TEk39NPw2 TkLZy4xRt9Agj12AYjGbHxJNtMbr25f5Yh7Ro=
MIME-Version: 1.0
Received: by 10.150.190.12 with SMTP id n12mr6748238ybf.224.1317268808631; Wed, 28 Sep 2011 21:00:08 -0700 (PDT)
Received: by 10.150.191.12 with HTTP; Wed, 28 Sep 2011 21:00:08 -0700 (PDT)
In-Reply-To: <997C5C6550674EBC826DBEBFC533F3D8@china.huawei.com>
References: <00ec01cc58d5$5fc92d80$1f5b8880$@com> <E2176179E7EE45108AD07ED086EB6FB6@china.huawei.com> <CAProHAR_3wMdn8o4Gbe7YfMogj2JhddfKLmNnxeQ+LSPcVFd7g@mail.gmail.com> <4E5360B6.20605@gmail.com> <C0E0A32284495243BDE0AC8A066631A88D856F@szxeml526-mbs.china.huawei.com> <997C5C6550674EBC826DBEBFC533F3D8@china.huawei.com>
Date: Thu, 29 Sep 2011 12:00:08 +0800
Message-ID: <CAProHASjNbupHon99kcxwoi7DawHaEKL2bHm4rh-OSb3Bj3C9Q@mail.gmail.com>
From: Zhen Cao <zehn.cao@gmail.com>
To: Qin Wu <bill.wu@huawei.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: hokey@ietf.org, Tina TSOU <Tina.Tsou.Zouting@huawei.com>
Subject: Re: [HOKEY] REMINDER: WGLC on draft-ietf-hokey-erp-aak-04
X-BeenThere: hokey@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: HOKEY WG Mailing List <hokey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hokey>
List-Post: <mailto:hokey@ietf.org>
List-Help: <mailto:hokey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Sep 2011 03:57:36 -0000

There is some mis-understanding. I am sorry for the ambiguity.

By "inter-realm", it means "inter roaming domain", RFC5296 supports it
and it is also in scope.

I thought it meant "inter-AAA", and RFC5296 does not support that.

Thanks for helping me understand this.

On Thu, Sep 29, 2011 at 11:17 AM, Qin Wu <bill.wu@huawei.com> wrote:
> Hi, Tena and all:
> ----- Original Message -----
> From: "Tina TSOU" <Tina.Tsou.Zouting@huawei.com>
> To: "Glen Zorn" <glenzorn@gmail.com>; "Zhen Cao" <zehn.cao@gmail.com>
> Cc: <hokey@ietf.org>
> Sent: Thursday, September 29, 2011 10:27 AM
> Subject: Re: [HOKEY] REMINDER: WGLC on draft-ietf-hokey-erp-aak-04
>
>
>> Hi Glen et al,
>> Comments are in line...
>>
>>
>> Best Regards,
>> Tina TSOU
>> http://tinatsou.weebly.com/contact.html
>>
>>
>> -----Original Message-----
>> From: hokey-bounces@ietf.org [mailto:hokey-bounces@ietf.org] On Behalf Of Glen Zorn
>> Sent: Tuesday, August 23, 2011 1:12 AM
>> To: Zhen Cao
>> Cc: hokey@ietf.org
>> Subject: Re: [HOKEY] REMINDER: WGLC on draft-ietf-hokey-erp-aak-04
>>
>> On 8/23/2011 12:33 PM, Zhen Cao wrote:
>>
>> ...
>>
>>>> 4) The realm in the keyName-NAI field is used to locate the peer's ERP/AAK
>>>> server
>>>> [Richard] what would happen if the SAP does not know the ERP/AAK server
>>>> indicated by the keyName-NAI
>>
>> Routing of EAP messages (encapsulated, in this case, in Diameter) is
>> always a function of the AAA infrastructure., I think.
>>
>>>
>>> Inter-realm handover is not in scope.
>>
>> Really?  I would think that that would be the only really useful purpose
>> of ERP-AAK...
>> [TT: RFC5296 supports ERP with the home ER server. In that case, one can say RFC5296 supports Inter-realm handover.]
>
> [Qin]: RFC5296 does support ERP with home ER server. This is referred to as Explicit ERP Bootstrapping in RFC5296.
> However comparing between Implicit ERP Bootstrapping with Explicit ERP Bootstrapping, there is not so much benefit to
> use Explicit Bootstrapping. Becos Explicit Bootstrapping needs another additonal round exchange beween home ER server
> and Home EAP sever. In my understanding,Explict Boostrapping is only used when there is no local ER server and rRK
> does not exprire yet.
>
> However if rRK expire, you need to trigger EAP-method exchange to generate a new EMSK to derive a new rRK.
> Becos of this, we proposed to abandon using Explicit bootstapping in RFC5296bis. but that haven't formed consesus yet.
>
> Currently, ERP-AAK still put referenc to old version ERP (RFC5296), therefore I agree what Glen said.
> But as I mentioned in this thread, we need to revise NAI-Identitifer to support inter-realm handover.
>
>
>
>> ...
>> _______________________________________________
>> HOKEY mailing list
>> HOKEY@ietf.org
>> https://www.ietf.org/mailman/listinfo/hokey
>> _______________________________________________
>> HOKEY mailing list
>> HOKEY@ietf.org
>> https://www.ietf.org/mailman/listinfo/hokey
>



-- 
Best regards,
Zhen

v2.23.0 | Report a Bug | By Email