Re: [IPsec] Start of WG Last Call on draft-ietf-ipsecme-eap-mutual (EAP-Only Authentication)
Yaron Sheffer <yaronf.ietf@gmail.com> Mon, 03 May 2010 19:36 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B69333A6AD5 for <ipsec@core3.amsl.com>; Mon, 3 May 2010 12:36:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.325
X-Spam-Level:
X-Spam-Status: No, score=-1.325 tagged_above=-999 required=5 tests=[AWL=-0.585, BAYES_20=-0.74]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gA7M65cuSBc1 for <ipsec@core3.amsl.com>; Mon, 3 May 2010 12:36:29 -0700 (PDT)
Received: from mail-ww0-f44.google.com (mail-ww0-f44.google.com [74.125.82.44]) by core3.amsl.com (Postfix) with ESMTP id 4B8C53A6863 for <ipsec@ietf.org>; Mon, 3 May 2010 12:36:29 -0700 (PDT)
Received: by wwi18 with SMTP id 18so541126wwi.31 for <ipsec@ietf.org>; Mon, 03 May 2010 12:36:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=QE4ospxqBUcdZo86Whle5QNwZISo1uh6Rlh6EqXm++8=; b=VmbdXPq2IIxoWSH7pprHAHo8xH/PZ9r8zSwvi39yebxK5Kbpb09LNLd+h40nU5ZiFi Ijb01j9F7wRfhhzUMq/e9vuy2rcEb7MRRTytyQ6p4sTtTNIQK+oYFe92dKZgqnvLAclL enmJILMRFD/Y4c63FdUfoTtjwwJ2EsBN+jW8c=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=WxiQYZhtKN9HhvwjB3TkAyMK3MalROoaoW0cgXPSJOdCzqFNa0RCkCZpavzuLfhUKb nfGcHkV8v5I7YDYrC3utrRCVQGg6ipPiHCi5xdhDAoEfrnc/wx9M+1kRiNyCAk0y8ND+ F4PxPblxkRqtAk4GM0tTyGu0kvd2YOSj5LV/A=
Received: by 10.227.141.79 with SMTP id l15mr94436wbu.57.1272915370965; Mon, 03 May 2010 12:36:10 -0700 (PDT)
Received: from [10.0.0.3] (bzq-79-181-18-85.red.bezeqint.net [79.181.18.85]) by mx.google.com with ESMTPS id r29sm43895291wbv.21.2010.05.03.12.36.04 (version=SSLv3 cipher=RC4-MD5); Mon, 03 May 2010 12:36:06 -0700 (PDT)
Message-ID: <4BDF25A2.4010709@gmail.com>
Date: Mon, 03 May 2010 22:36:02 +0300
From: Yaron Sheffer <yaronf.ietf@gmail.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100423 Lightning/1.0b1 Thunderbird/3.0.4
MIME-Version: 1.0
To: Martin Willi <martin@strongswan.org>
References: <p06240886c7f51f814274@[10.20.30.158]> <1272878010.1762.77.camel@martin>
In-Reply-To: <1272878010.1762.77.camel@martin>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: IPsecme WG <ipsec@ietf.org>, Paul Hoffman <paul.hoffman@vpnc.org>
Subject: Re: [IPsec] Start of WG Last Call on draft-ietf-ipsecme-eap-mutual (EAP-Only Authentication)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 May 2010 19:36:30 -0000
Hi Martin, thanks for your comments. Some responses below. Yaron On 05/03/2010 12:13 PM, Martin Willi wrote: > Hi, > >> Thus, this starts the two-week WG Last Call on "An Extension for >> EAP-Only Authentication in IKEv2", >> <http://tools.ietf.org/html/draft-ietf-ipsecme-eap-mutual-01>. Please >> send any comments on the document to the mailing list. Support, >> criticism, and suggestions for additions or changes are all >> appropriate. At a minimum, I would like to see a handful of people say >> "I have read the draft". > > We have added experimental support for this draft to version 4.3.6 of > our strongSwan open source IKEv2 daemon. > The proverbial proof of the pudding... > I think the draft looks good from an implementors perspective, here some > comments: > > - Section 4 lists two requirements for EAP methods: mutual > authentication and key generation. As noted in section 6.3, an active > attacker can intercept plain EAP packets. I think it would be a good > idea to add a "dictionary-attack-resistant" property to the requirement > list. There are methods that have the other two properties, but are not > a good candidate for use with this draft. The widely deployed > EAP-MSCHAPv2 is such an example. Using it with the draft will highly > degrade the security of the IKEv2 protocol. I agree. > > - The example of using EAP-GSS with with Kerberos in section 2 to > replace KINK is probably not the best one for the reason above. Or is > this combination in the end any more secure than using IKEv2 PSK with > weak passwords? Yes, we need a better example. > > - What's the reason for not adding EAP-TLS to the list of save methods? > I think EAP-TLS is a perfect candidate. It might be questionable to use > TLS within IKEv2 at all, but there actually are higher level protocols > that exactly use this combination. EAP-SIM is another candidate probably > worth to mention, having very similar properties as EAP-AKA. EAP-TLS is mentioned right before the table - and could be added. The table is not meant to be all-inclusive. I think using EAP-TLS here is crazy in practice, and I'd love to hear more about the protocols that use this combination - and why. > > - Section 3: >> If the responder supports this notification, it omits the public key >> based AUTH payload and CERT payloads from message 4. > This might be misleading, as the responder can ignore this notify even > if it supports the extension. This would make sense if the selected EAP > method does not have the required properties. "May omit"? I think "supports" usually means "supports and actually feels like doing it." > > Best regards > Martin > >
- [IPsec] Start of WG Last Call on draft-ietf-ipsec… Paul Hoffman
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Paul Hoffman
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Martin Willi
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Yoav Nir
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Yaron Sheffer
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Yaron Sheffer
- Re: [IPsec] Start of WG Last Call on draft-ietf-i… Andreas Steffen