Re: [IPsec] New PAKE Criteria draft posted

SeongHan Shin <seonghan.shin@aist.go.jp> Thu, 25 March 2010 19:28 UTC

Return-Path: <shinsh93@gmail.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 97DF63A68B3 for <ipsec@core3.amsl.com>; Thu, 25 Mar 2010 12:28:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.846
X-Spam-Level:
X-Spam-Status: No, score=-0.846 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, DNS_FROM_OPENWHOIS=1.13, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PVtuDb5ypXls for <ipsec@core3.amsl.com>; Thu, 25 Mar 2010 12:28:29 -0700 (PDT)
Received: from mail-qy0-f197.google.com (mail-qy0-f197.google.com [209.85.221.197]) by core3.amsl.com (Postfix) with ESMTP id BA4863A69D4 for <ipsec@ietf.org>; Thu, 25 Mar 2010 12:27:13 -0700 (PDT)
Received: by qyk35 with SMTP id 35so460864qyk.18 for <ipsec@ietf.org>; Thu, 25 Mar 2010 12:27:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to:cc :content-type; bh=aeBGAc/Lt3o33n53LaNhJDrhkAHta6nPmomd5DULEfE=; b=U43VknUxSl4lRpzV9t+jtpQL2Dt8WHUqs9pm0cKxIenZjbV1G8dD3XYwKIl29KVTBi inQEoKWYMrR6NCIlvlDZss/e/s5q1Sxggo1v4apSArCEiTb5HSla8O79dpEcGk3Q9SBh J0mngxkp9uBnYPNc0EK2e4OxufhKYaBNTbQHM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; b=lUpCNDvOKmRL1yrbo7QoZ0TQPBlXMU0Jcms5D66hdFavdls74/M4dAl0aD4rTbE0Dk gP+CSa0f+bZ0pZRmBXT8d553PESWKWPVsqEFAVjbifJ+qltbrOZKdaiFmniyulTB6JEn n69HvV1yEcACbb1zP2llB+j4im2HOdjBOAYI0=
MIME-Version: 1.0
Sender: shinsh93@gmail.com
Received: by 10.229.230.84 with SMTP id jl20mr4143984qcb.88.1269545253218; Thu, 25 Mar 2010 12:27:33 -0700 (PDT)
In-Reply-To: <4BABABAE.5050501@gmail.com>
References: <4BAB06D4.3030907@gmail.com> <a8d6c01a1003251107x7cc6e303g5e105f547788a58e@mail.gmail.com> <4BABABAE.5050501@gmail.com>
Date: Fri, 26 Mar 2010 04:27:33 +0900
X-Google-Sender-Auth: 2ca4fdfd668c47a3
Message-ID: <a8d6c01a1003251227t4721118bvd143eaedf8f13ea1@mail.gmail.com>
From: SeongHan Shin <seonghan.shin@aist.go.jp>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
Content-Type: multipart/alternative; boundary=00163630ff21d829b40482a50945
Cc: IPsecme WG <ipsec@ietf.org>, Kazukuni Kobara <k-kobara@aist.go.jp>, Shin <seonghan.shin@aist.go.jp>
Subject: Re: [IPsec] New PAKE Criteria draft posted
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Mar 2010 19:28:30 -0000

Thank you for your kind explanation.

Best regards,
Shin


On Fri, Mar 26, 2010 at 3:30 AM, Yaron Sheffer <yaronf.ietf@gmail.com>wrote;wrote:

> Hi Shin,
>
> Yes. For the typical remote access VPN, EAP is typically more useful. Note
> that there is still need for strong password-based mutual authentication EAP
> methods - but their home is the EMU working group.
>
> In addition, the IPsecME has another charter item designed to fit such EAP
> methods (such as the future EAP-AugPAKE :-) into IKEv2.
>
> Please see again the group's charter,
> http://tools.ietf.org/wg/ipsecme/charters.
>
> Thanks,
>        Yaron
>
>
> On 25.3.2010 20:07, SeongHan Shin wrote:
>
>> Dear Yaron Sheffer,
>>
>> I have one question about the draft.
>>
>> draft-sheffer-ipsecme-pake-criteria-02.txt says in Page 4
>> “This document is limited to the use of password-based authentication to
>> achieve trust between gateways”
>>
>> Is this a consensus of this WG?
>>
>> Best regards,
>> Shin
>>
>> On Thu, Mar 25, 2010 at 3:46 PM, Yaron Sheffer <yaronf.ietf@gmail.com
>> <mailto:yaronf.ietf@gmail.com>> wrote:
>>
>>    Hi,
>>
>>    after the good discussion in Anaheim, and with the help of comments
>>    received on and off the list, I have updated the PAKE Criteria draft
>>    and posted it as
>>    http://www.ietf.org/id/draft-sheffer-ipsecme-pake-criteria-02.txt.
>>
>>    I have added a number of criteria, clarified others, and added
>>    numbering (SEC1-SEC6, IPR1-IPR3 etc.).
>>
>>    Thanks,
>>        Yaron
>>    _______________________________________________
>>    IPsec mailing list
>>    IPsec@ietf.org <mailto:IPsec@ietf.org>
>>
>>    https://www.ietf.org/mailman/listinfo/ipsec
>>
>>
>>
>>
>> --
>> ------------------------------------------------------------------
>> SeongHan Shin
>> Research Center for Information Security (RCIS),
>> National Institute of Advanced Industrial Science and Technology (AIST),
>> Room no. 1003, Akihabara Daibiru 10F,
>> 1-18-13, Sotokannda, Chiyoda-ku, Tokyo 101-0021 Japan
>> Tel : +81-3-5298-2722
>> Fax : +81-3-5298-4522
>> E-mail : seonghan.shin@aist.go.jp <mailto:seonghan.shin@aist.go.jp>
>> ------------------------------------------------------------------
>>
>


-- 
------------------------------------------------------------------
SeongHan Shin
Research Center for Information Security (RCIS),
National Institute of Advanced Industrial Science and Technology (AIST),
Room no. 1003, Akihabara Daibiru 10F,
1-18-13, Sotokannda, Chiyoda-ku, Tokyo 101-0021 Japan
Tel : +81-3-5298-2722
Fax : +81-3-5298-4522
E-mail : seonghan.shin@aist.go.jp
------------------------------------------------------------------