IETF Logo Mail Archive

Re: [HOKEY] ERX-12 -- Please review changes

Lakshminath Dondeti <ldondeti@qualcomm.com> Tue, 26 February 2008 04:32 UTC

Return-Path: <hokey-bounces@ietf.org>
X-Original-To: ietfarch-hokey-archive@core3.amsl.com
Delivered-To: ietfarch-hokey-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E00473A6BA3; Mon, 25 Feb 2008 20:32:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.119
X-Spam-Level:
X-Spam-Status: No, score=-2.119 tagged_above=-999 required=5 tests=[AWL=-1.682, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dnHiBSbEbZZG; Mon, 25 Feb 2008 20:32:50 -0800 (PST)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E5E173A67FC; Mon, 25 Feb 2008 20:32:50 -0800 (PST)
X-Original-To: hokey@core3.amsl.com
Delivered-To: hokey@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 91A0A3A6B07 for <hokey@core3.amsl.com>; Mon, 25 Feb 2008 20:32:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p4xmhsO26CZI for <hokey@core3.amsl.com>; Mon, 25 Feb 2008 20:32:47 -0800 (PST)
Received: from wolverine02.qualcomm.com (wolverine02.qualcomm.com [199.106.114.251]) by core3.amsl.com (Postfix) with ESMTP id 6941B3A6783 for <hokey@ietf.org>; Mon, 25 Feb 2008 20:32:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=qualcomm.com; i=ldondeti@qualcomm.com; q=dns/txt; s=qcdkim; t=1204000339; x=1235536339; h=message-id:date:from:user-agent:mime-version:to:cc: subject:references:in-reply-to:content-type: content-transfer-encoding:x-ironport-av; z=Message-ID:=20<47C39651.6060708@qualcomm.com>|Date:=20Mo n,=2025=20Feb=202008=2020:32:17=20-0800|From:=20Lakshmina th=20Dondeti=20<ldondeti@qualcomm.com>|User-Agent:=20Thun derbird=202.0.0.9=20(Windows/20071031)|MIME-Version:=201. 0|To:=20Yoshihiro=20Ohba=20<yohba@tari.toshiba.com>|CC: =20Bernard=20Aboba=20<bernard_aboba@hotmail.com>,=0D=0A =20=20=20=20=20=20=20=20Sam=20Hartman=20<hartmans-ietf@mi t.edu>,=20hokey@ietf.org|Subject:=20Re:=20[HOKEY]=20ERX-1 2=20--=20Please=20review=20changes|References:=20<A3DA4C2 546E1614D8ACC896746CDCF29CEC6ED@aruba-mx1.arubanetworks.c om>=20<47C31006.60802@piuha.net>=20<A3DA4C2546E1614D8ACC8 96746CDCF29CEC757@aruba-mx1.arubanetworks.com>=20<47C3252 6.2080203@piuha.net>=20<47C32D86.2040204@qualcomm.com>=20 <47C32FB2.2080800@piuha.net>=20<BLU137-W3364D33E2B6FB4AC6 018B593180@phx.gbl>=20<47C33E13.5000404@qualcomm.com>=20< BLU137-W3014B1D52B1475CCBC1D2B93180@phx.gbl>=20<47C36BDC. 6010909@qualcomm.com>=20<20080226032611.GD1759@steelhead. localdomain>|In-Reply-To:=20<20080226032611.GD1759@steelh ead.localdomain>|Content-Type:=20text/plain=3B=20charset =3DISO-8859-15=3B=20format=3Dflowed |Content-Transfer-Encoding:=207bit|X-IronPort-AV:=20E=3DM cAfee=3Bi=3D"5200,2160,5237"=3B=20a=3D"812882"; bh=9Bb8ybvGLiD91U8V9if5i+UBuGtuNWNbCeqwHfPYkzc=; b=whaWFVaoT/EsJ3++Xh5X9NN2AgKcA85Kht4AJLqDW09n7JGptLyaVX/b RzC2ZmyAwbA7kEHb22808MwBokYPtvmGHrLnsROruu1n9V8GpX3CoKBWU kxgwnv9bLSq7bLGOurxrVi96MmMnCxwQbpWm+cleAOZJaPRY8KOJ/s3uv k=;
X-IronPort-AV: E=McAfee;i="5200,2160,5237"; a="812882"
Received: from pdmz-ns-mip.qualcomm.com (HELO numenor.qualcomm.com) ([199.106.114.10]) by wolverine02.qualcomm.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 25 Feb 2008 20:32:18 -0800
Received: from msgtransport06.qualcomm.com (msgtransport06.qualcomm.com [129.46.61.149]) by numenor.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m1Q4WIRr029428 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Mon, 25 Feb 2008 20:32:18 -0800
Received: from [10.50.69.141] (qconnect-10-50-69-141.qualcomm.com [10.50.69.141]) by msgtransport06.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m1Q4WGUb004621 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 25 Feb 2008 20:32:17 -0800
Message-ID: <47C39651.6060708@qualcomm.com>
Date: Mon, 25 Feb 2008 20:32:17 -0800
From: Lakshminath Dondeti <ldondeti@qualcomm.com>
User-Agent: Thunderbird 2.0.0.9 (Windows/20071031)
MIME-Version: 1.0
To: Yoshihiro Ohba <yohba@tari.toshiba.com>
References: <A3DA4C2546E1614D8ACC896746CDCF29CEC6ED@aruba-mx1.arubanetworks.com> <47C31006.60802@piuha.net> <A3DA4C2546E1614D8ACC896746CDCF29CEC757@aruba-mx1.arubanetworks.com> <47C32526.2080203@piuha.net> <47C32D86.2040204@qualcomm.com> <47C32FB2.2080800@piuha.net> <BLU137-W3364D33E2B6FB4AC6018B593180@phx.gbl> <47C33E13.5000404@qualcomm.com> <BLU137-W3014B1D52B1475CCBC1D2B93180@phx.gbl> <47C36BDC.6010909@qualcomm.com> <20080226032611.GD1759@steelhead.localdomain>
In-Reply-To: <20080226032611.GD1759@steelhead.localdomain>
Cc: Bernard Aboba <bernard_aboba@hotmail.com>, Sam Hartman <hartmans-ietf@mit.edu>, hokey@ietf.org
Subject: Re: [HOKEY] ERX-12 -- Please review changes
X-BeenThere: hokey@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: HOKEY WG Mailing List <hokey.ietf.org>
List-Unsubscribe: <http://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/hokey>
List-Post: <mailto:hokey@ietf.org>
List-Help: <mailto:hokey-request@ietf.org?subject=help>
List-Subscribe: <http://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: hokey-bounces@ietf.org
Errors-To: hokey-bounces@ietf.org

On 2/25/2008 7:26 PM, Yoshihiro Ohba wrote:
> Roundtrips between EAP peer and EAP authenticator on the access link
> are not major part of signaling latency compared to AAA roundtrips.  I
> have not heard a complaint on 802.11i 4-way handshake latency.

Consider that not to be the case any more.  I am complaining. :)  More 
seriously, handover latency of 10-20ms is a target in some networks.

If there is a sufficient budget for handover, we probably need to do 
nothing for reauthentication.

regards,
Lakshminath

> 
> Although it would be a nice thing to reduce any kind of roundtrips as
> much as possible, I am not sure, after reading the IETF Last Call
> comments, people outside the HOKEY WG seem to wonder if the expected
> benefit for more optimization with ERX pays to its deployment cost
> especially for existing lower-layers.  This is my main motivation to
> come up with EAP-KDE method.
> 
> Yoshihiro Ohba
> 
> On Mon, Feb 25, 2008 at 05:31:08PM -0800, Lakshminath Dondeti wrote:
>> Hi Bernard,
>>
>> I have reviewed draft-ohba-eap-kde-01 before and it does not meet fast 
>> reauthentication goals.  Please see below:
>>
>> On 2/25/2008 3:24 PM, Bernard Aboba wrote:
>>> [BA] I've recently seen a draft (from Yoshi, submitted today) that  seems
>>> to provide similar functionality with no changes to RFC 3748.  Although
>>> I haven't reviewed the document in depth, it did seem to provide
>>> method-independent re-authentication without multiple round-trips
>>> (at least for case of a local ERX server, which is the most important
>>> one from a performance point of view). 
>> The number of roundtrips on the access link is 3, if we take connection 
>> open or an equivalent into account.  With ERP, the peer can start 
>> sending authenticated data after 1 RT.
>>
>>> This document will probably be discussed in IEEE 802, which could adopt
>>> it as their approach to EAP re-authentication going forward.
>> In other access technologies, the handover latency requirements are more 
>> stringent and they have already adopted ERP and waiting for publication 
>> of the ERP RFC.  Without further optimizations, 802.11 with 3 RTs or 
>> more for connection setup and EAP-KDE and 2 more for the 4-way exchange 
>> has little to no hope of really achieving low handover latency.
>>
>> That model does not fit for voice call continuity.
>>
>> regards,
>> Lakshminath
>>
>>> If possible, it would be good to have a single standard for this, as opposed
>>> to multiple competing ones.
>> _______________________________________________
>> HOKEY mailing list
>> HOKEY@ietf.org
>> http://www.ietf.org/mailman/listinfo/hokey
>>
>>
> 
_______________________________________________
HOKEY mailing list
HOKEY@ietf.org
http://www.ietf.org/mailman/listinfo/hokey

v2.23.0 | Report a Bug | By Email