IETF Logo Mail Archive

Re: [kitten] SPAKE Preauth

Ken Hornstein <kenh@pobox.com> Mon, 04 May 2015 14:40 UTC

Return-Path: <kenh@pobox.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3545C1A1A91 for <kitten@ietfa.amsl.com>; Mon, 4 May 2015 07:40:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.102
X-Spam-Level:
X-Spam-Status: No, score=-0.102 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I6ZPWwVnZxRS for <kitten@ietfa.amsl.com>; Mon, 4 May 2015 07:40:07 -0700 (PDT)
Received: from sasl.smtp.pobox.com (pb-smtp1.int.icgroup.com [208.72.237.35]) by ietfa.amsl.com (Postfix) with ESMTP id 48DF41A1A8C for <kitten@ietf.org>; Mon, 4 May 2015 07:40:07 -0700 (PDT)
Received: from sasl.smtp.pobox.com (unknown [127.0.0.1]) by pb-smtp1.pobox.com (Postfix) with ESMTP id B72284D3E6 for <kitten@ietf.org>; Mon, 4 May 2015 10:40:05 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=pobox.com; h=from:to :subject:in-reply-to:mime-version:content-type:date:message-id; s=sasl; bh=nev9BXEpFdgGyMOX9XJ861kGAlk=; b=vH8YKHT9css1VzHEzJcI OgyaPAQtthm1goADbYgfDSpmMC5svrA2WF7sMbbchoc0GV2YOoUzgddbyvD0JkzQ Xm/YyOZ/0dwgaFs7GwZh/qg1cO8Ai0A2et4NqaqTr4fbsFT/M1QuLlz13rEBQ/VL zKIPcE4rQ877UIB+If0FJkQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=pobox.com; h=from:to:subject :in-reply-to:mime-version:content-type:date:message-id; q=dns; s=sasl; b=e4NtnsqqJI4G+eHG3ngDKaNIaBTQdly1+FRNBO2FxdQBIjXXPjCmh moOBESqiFNuodIxc+xlg03iyptqhqEGwseP/LFWDXltp2ymFhS3CdPfCzlbZ6ByF 0ZHg4PHIUoAOJR8ji1D3GeAkMjAy6zvKG/HBJWw6JNfAGW3MlUez/Y=
Received: from pb-smtp1.int.icgroup.com (unknown [127.0.0.1]) by pb-smtp1.pobox.com (Postfix) with ESMTP id AFB1A4D3E1 for <kitten@ietf.org>; Mon, 4 May 2015 10:40:05 -0400 (EDT)
Received: from zoolander.cmf.nrl.navy.mil (unknown [134.207.12.40]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by pb-smtp1.pobox.com (Postfix) with ESMTPSA id 4CC1B4D3DF for <kitten@ietf.org>; Mon, 4 May 2015 10:40:05 -0400 (EDT)
From: Ken Hornstein <kenh@pobox.com>
To: kitten@ietf.org
In-Reply-To: <alpine.GSO.1.10.1505021757480.22210@multics.mit.edu>
X-Face: "Evs"_GpJ]],xS)b$T2#V&{KfP_i2`TlPrY$Iv9+TQ!6+`~+l)#7I)0xr1>4hfd{#0B4 WIn3jU;bql;{2Uq%zw5bF4?%F&&j8@KaT?#vBGk}u07<+6/`.F-3_GA@6Bq5gN9\+s;_d gD\SW #]iN_U0 KUmOR.P<|um5yP<ea#^"SJK;C*}fMI;Mv(aiO2z~9n.w?@\>kEpSD@*e`
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Mon, 04 May 2015 10:40:59 -0400
X-Pobox-Relay-ID: 743A3F00-F26B-11E4-B236-83E09F42C9D4-90216062!pb-smtp1.pobox.com
Message-Id: <20150504144005.AFB1A4D3E1@pb-smtp1.pobox.com>
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/yGOHPNYK2YVP9E2dQW7Jx4yCR-w>
Subject: Re: [kitten] SPAKE Preauth
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 May 2015 14:40:08 -0000

>Essentially, the answer is different whether OTP is supposed to be the
>first (and only) authentication factor, or a second factor to be used in
>conjunction with a password.

See, I think you've got the question all wrong.  My question is NOT,
"Is OTP supposed to be the only authentication factor?", it's, "Which
protocol is it actually possible for me to deploy successfully?"

--Ken

v2.23.0 | Report a Bug | By Email