Re: [HOKEY] Review of draft-gaonkar-radext-erp-attrs-02.txt
Lakshminath Dondeti <ldondeti@qualcomm.com> Wed, 16 January 2008 19:37 UTC
Return-path: <hokey-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1JFE4c-0006cu-F3; Wed, 16 Jan 2008 14:37:18 -0500
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1JFE4a-0006Tb-RU for hokey@ietf.org; Wed, 16 Jan 2008 14:37:16 -0500
Received: from wolverine02.qualcomm.com ([199.106.114.251]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1JFE4a-00069t-1s for hokey@ietf.org; Wed, 16 Jan 2008 14:37:16 -0500
DomainKey-Signature: s=qcdkim; d=qualcomm.com; c=nofws; q=dns; h=X-IronPort-AV:Received:Received:Received:Message-ID:Date: From:User-Agent:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=aE0ojgZxsQxY99pq3C24s52Xj8ZWjNOeJsk4+ZIHMcFaejoGWhOQOEv5 PzauMWfK7qEHX6IyzQN8aaGRoP7Oo4qLnH3VU9u+h2GD5ovFBq0ENO0ET cMDkHn+emxajtXTQ27C76mYvCczjp8jRT9be5aMDVN/38iaOfw+E95PoG Y=;
X-IronPort-AV: E=McAfee;i="5100,188,5209"; a="562845"
Received: from ithilien.qualcomm.com ([129.46.51.59]) by wolverine02.qualcomm.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 16 Jan 2008 11:37:14 -0800
Received: from msgtransport01.qualcomm.com (msgtransport01.qualcomm.com [129.46.61.148]) by ithilien.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m0GJbEFG004181 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Wed, 16 Jan 2008 11:37:14 -0800
Received: from [129.46.78.94] (ldondeti.na.qualcomm.com [129.46.78.94]) by msgtransport01.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m0GJbDY6030755 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 16 Jan 2008 11:37:14 -0800
Message-ID: <478E5CE7.1050409@qualcomm.com>
Date: Wed, 16 Jan 2008 11:37:11 -0800
From: Lakshminath Dondeti <ldondeti@qualcomm.com>
User-Agent: Thunderbird 2.0.0.9 (Windows/20071031)
MIME-Version: 1.0
To: Alan DeKok <aland@deployingradius.com>
Subject: Re: [HOKEY] Review of draft-gaonkar-radext-erp-attrs-02.txt
References: <477D1029.2060502@deployingradius.com> <C24CB51D5AA800449982D9BCB9032513C22802@NAEX13.na.qualcomm.com> <4062.69.12.173.8.1199655622.squirrel@www.trepanning.net> <C24CB51D5AA800449982D9BCB9032513C22A67@NAEX13.na.qualcomm.com> <47843CFD.3040900@deployingradius.com> <C24CB51D5AA800449982D9BCB9032513CF47ED@NAEX13.na.qualcomm.com> <4785467D.1050607@deployingradius.com> <C24CB51D5AA800449982D9BCB9032513CF486 9@NAEX13.na. qualcomm.com> <7105.216.31.249.246.1199927549.squirrel@www.trepanning.net> <C24CB51D5AA800449982D9BCB9032513CF488D@NAEX13.na.qualcomm.com> <4785DEDC.7070707@deployingradius.com> <47867277.3040206@qualcomm.com> <4786FFA8.9010208@deployingradius.com> <C24CB51D5AA800449982D9BCB9032513CF4990@NAEX13.na.qualcomm.com> <478708BE.102080 5@deployingradius.com> <C24CB51D5AA800449982D9BCB9032513CF4991@NAEX13.na.qualcom! m.com> <47870DE9.7000505@deployingradius.com> <4787112E.3060801@qualcomm.com> <478B81B5.2050806@deployingradius.com>
In-Reply-To: <478B81B5.2050806@deployingradius.com>
Content-Type: text/plain; charset="ISO-8859-15"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b
Cc: hokey@ietf.org
X-BeenThere: hokey@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: HOKEY WG Mailing List <hokey.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/hokey>
List-Post: <mailto:hokey@ietf.org>
List-Help: <mailto:hokey-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
Errors-To: hokey-bounces@ietf.org
Hi Alan, Sorry for the delay. Some other IETF work preempted this discussion in my priority list. The notion of domains and key delivery for different domains is in fact in the charter and there is even a specific deliverable: Sep 2007 Submit Protocol and Keying Hierarchy for Visited Domain Handovers and Re-authentication draft to IESG. BTW, I noticed that most if not all HOKEY deliverables are marked "Done." It is really great to see that; kudos to the chairs and working group contributors for this achievement! regards, Lakshminath On 1/14/2008 7:37 AM, Alan DeKok wrote: > Lakshminath Dondeti wrote: >> Requirement: DSRKs are necessary >> * Why? >>> Several reasons: Have a key in each domain to do local services. >> Reauthentication being one of them. The USRK/rRK would provide such >> services at home; is not sent out of the home domain, so let's keep it >> that way. Derive a key per domain and send it. > > My reading of the charter, and recent discussions, indicates that > HOKEY is intended to target re-authentication within one domain > (*.example.com), and not across domains (example.com -> example.net). > If so, then I would like to know more about the need for keys in > sub-domains, e.g. *.example.com. > > To a very large extent, the key distribution issue within example.com > is completely up to example.com. HOKEY could simply say "example.com > caches the re-authentication key, and uses that to re-authenticate the > user". The exact mechanism is implementation-dependent. > > Alan DeKok. > _______________________________________________ HOKEY mailing list HOKEY@ietf.org https://www1.ietf.org/mailman/listinfo/hokey
- [HOKEY] Review of draft-gaonkar-radext-erp-attrs-… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re:RE: [HOKEY] Review of draft-gaonkar-radext-erp… wan.changsheng
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Yoshihiro Ohba
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re:RE: [HOKEY] Review of draft-gaonkar-radext-erp… wan.changsheng
- Re:Re:RE: [HOKEY] Review of draft-gaonkar-radext-… wan.changsheng
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Yoshihiro Ohba
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Yoshihiro Ohba
- Re:Re: [HOKEY] Review of draft-gaonkar-radext-erp… wan.changsheng
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re:Re: [HOKEY] Review of draft-gaonkar-radext-erp… wan.changsheng
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Yoshihiro Ohba
- Re: Re: [HOKEY] Review of draft-gaonkar-radext-er… Yoshihiro Ohba
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- Re:Re: Re: [HOKEY] Review of draft-gaonkar-radext… wan.changsheng
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Glen Zorn
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Yoshihiro Ohba
- Re:RE: [HOKEY] Review of draft-gaonkar-radext-erp… wan.changsheng
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re:RE: [HOKEY] Review of draft-gaonkar-radext-erp… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Nakhjiri Madjid-VXT746
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Nakhjiri Madjid-VXT746
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Dan Harkins
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- RE: [HOKEY] Review of draft-gaonkar-radext-erp-at… Narayanan, Vidya
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Alan DeKok
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Lakshminath Dondeti
- Re: [HOKEY] Review of draft-gaonkar-radext-erp-at… Charles Clancy