IETF Logo Mail Archive

Re: [pcp] EAP-over-PCP

"Zhangdacheng (Dacheng)" <zhangdacheng@huawei.com> Tue, 18 September 2012 09:37 UTC

Return-Path: <zhangdacheng@huawei.com>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A57E021E8043 for <pcp@ietfa.amsl.com>; Tue, 18 Sep 2012 02:37:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.999
X-Spam-Level:
X-Spam-Status: No, score=-5.999 tagged_above=-999 required=5 tests=[AWL=0.599, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lv6mLtnRCn8X for <pcp@ietfa.amsl.com>; Tue, 18 Sep 2012 02:37:08 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) by ietfa.amsl.com (Postfix) with ESMTP id 391C221F87D5 for <pcp@ietf.org>; Tue, 18 Sep 2012 02:37:07 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml204-edg.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.5-GA FastPath queued) with ESMTP id AKT86451; Tue, 18 Sep 2012 09:37:05 +0000 (GMT)
Received: from LHREML403-HUB.china.huawei.com (10.201.5.217) by lhreml204-edg.china.huawei.com (172.18.7.223) with Microsoft SMTP Server (TLS) id 14.1.323.3; Tue, 18 Sep 2012 10:36:03 +0100
Received: from SZXEML401-HUB.china.huawei.com (10.82.67.31) by lhreml403-hub.china.huawei.com (10.201.5.217) with Microsoft SMTP Server (TLS) id 14.1.323.3; Tue, 18 Sep 2012 10:36:23 +0100
Received: from SZXEML528-MBX.china.huawei.com ([169.254.4.156]) by szxeml401-hub.china.huawei.com ([::1]) with mapi id 14.01.0323.003; Tue, 18 Sep 2012 17:35:13 +0800
From: "Zhangdacheng (Dacheng)" <zhangdacheng@huawei.com>
To: Alper Yegin <alper.yegin@yegin.org>, Sam Hartman <hartmans@painless-security.com>
Thread-Topic: [pcp] EAP-over-PCP
Thread-Index: AQHNlXlhs2GUiDYww0eGZW/mTWwbnZeP0mfw
Date: Tue, 18 Sep 2012 09:35:11 +0000
Message-ID: <C72CBD9FE3CA604887B1B3F1D145D05E39E397DD@szxeml528-mbx.china.huawei.com>
References: <14C7F4F06DB5814AB0DE29716C4F6D6702E12ABC28@FRMRSSXCHMBSB1.dc-m.alcatel-lucent.com> <CB96F2AF-7545-457D-96EB-F78B7666C00C@yegin.org> <tsl1ui0wvmo.fsf_-_@mit.edu> <E91C9554-FBCF-4324-A1BF-5C4D75F5264A@yegin.org> <9A2322BB-699A-4A71-89D5-9E3E48979272@yegin.org>
In-Reply-To: <9A2322BB-699A-4A71-89D5-9E3E48979272@yegin.org>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.111.99.49]
Content-Type: multipart/alternative; boundary="_000_C72CBD9FE3CA604887B1B3F1D145D05E39E397DDszxeml528mbxchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Cc: "'pcp@ietf.org'" <pcp@ietf.org>
Subject: Re: [pcp] EAP-over-PCP
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pcp>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Sep 2012 09:37:09 -0000

Hi, Alper:

I am not surprised that you have  that feeling. If you could check the discussion during the IETF 83 in Paris, we have clarified the PCP based authentication mechanism adopted the idea of PANA (but only the useful part). Also, in that meeting, people started discussing whether we need an integrated or an separated authentication mechanism. I think the most important problem we are discussing now is whether we need to use PCP or PANA to transport EAP, right?

Please refer to the following link for more information: http://www.ietf.org/mail-archive/web/pcp/current/msg01930.html

From: pcp-bounces@ietf.org [mailto:pcp-bounces@ietf.org] On Behalf Of Alper Yegin
Sent: Tuesday, September 18, 2012 4:41 PM
To: Sam Hartman
Cc: 'pcp@ietf.org'
Subject: [pcp] EAP-over-PCP

I went back to reading your draft again.

I gotta tell you, it felt like reading PANA!
Most of the design is direct adaptation of PANA design.
Earlier version of the I-D had softly acknowledged that:


   Some of the ideas in this document were adopted from PANA[RFC5191].

Interestingly, this statement disappeared in the latest doc.
"Some" is a major understatement btw.

The most striking difference between PANA and your design is in the terminology, and making it (look like) part of PCP.

But actually, on that last note, this does not look like PCP at all either.

PCP is a host-driven req/rsp protocol, plus server-side one-way notifications. That dictates its state machine.

Your design includes:
- client side one way message (PCC-Initiation)
- server-driven req/rsp
- one-way acks (PA-Ack) from client, wedged into req/rsp sequence

This is so different than PCP. Forcing the base PCP protocol to have a state machine to support both its native needs and this new "extension" is not trivial.

If you folks revert the terminology back to PANA's, we can be done :-)

Alper

v2.23.0 | Report a Bug | By Email