[Pana] PANA IPsec pre-requisite
"Salekul Islam" <isalekul@hotmail.com> Fri, 23 March 2007 16:52 UTC
Return-path: <pana-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HUmzz-0006OS-Di; Fri, 23 Mar 2007 12:52:19 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HUmzy-0006OK-0V for Pana@ietf.org; Fri, 23 Mar 2007 12:52:18 -0400
Received: from bay0-omc1-s32.bay0.hotmail.com ([65.54.246.104]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HUmzv-0003GG-ME for Pana@ietf.org; Fri, 23 Mar 2007 12:52:17 -0400
Received: from hotmail.com ([65.54.168.15]) by bay0-omc1-s32.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668); Fri, 23 Mar 2007 09:52:15 -0700
Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 23 Mar 2007 09:52:14 -0700
Message-ID: <BAY113-F5992D759EEED4C70EFA3BCF6A0@phx.gbl>
Received: from 65.54.168.200 by by113fd.bay113.hotmail.msn.com with HTTP; Fri, 23 Mar 2007 16:52:11 GMT
X-Originating-IP: [206.223.235.42]
X-Originating-Email: [isalekul@hotmail.com]
X-Sender: isalekul@hotmail.com
From: Salekul Islam <isalekul@hotmail.com>
To: Pana@ietf.org
Bcc:
Date: Fri, 23 Mar 2007 16:52:11 +0000
Mime-Version: 1.0
Content-Type: text/plain; format="flowed"
X-OriginalArrivalTime: 23 Mar 2007 16:52:14.0986 (UTC) FILETIME=[9C0526A0:01C76D6B]
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 2409bba43e9c8d580670fda8b695204a
Cc:
Subject: [Pana] PANA IPsec pre-requisite
X-BeenThere: pana@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Protocol for carrying Authentication for Network Access <pana.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:pana@ietf.org>
List-Help: <mailto:pana-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=subscribe>
Errors-To: pana-bounces@ietf.org
Hi, In the draft-ietf-pana-ipsec, section 3.0 states some pre-requisites for IPsec SA establishment. The first one is, The PaC and PAA mutually authenticate each other using an EAP method that is able to derive a AAA-key. AFAIK, the PaC and the AAA Server will mutually authenticate, and will establish a AAA-key. This AAA-key will be exported to the PAA using one of the AAA protocols. This mechanism is explained in the EAP key management framework I-D. Why this detail is missing in the PANA IPsec draft. Is it assumed that the reader should know it or am I missing something? I have another query to ask. What is the future plan for the PANA IPsec I-D? Will the WG publish a new version of it? Thanks and regards, Salekul _________________________________________________________________ Have Some Fresh Air Fun This March Break http://local.live.com/?mkt=en-ca/?v=2&cid=A6D6BDB4586E357F!147 _______________________________________________ Pana mailing list Pana@ietf.org https://www1.ietf.org/mailman/listinfo/pana
- [Pana] PANA IPsec pre-requisite Salekul Islam