IETF Logo Mail Archive

Wireless LAN Certificate Extensions

"Housley, Russ" <rhousley@rsasecurity.com> Wed, 24 July 2002 22:04 UTC

Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA03741 for <pkix-archive@odin.ietf.org>; Wed, 24 Jul 2002 18:04:22 -0400 (EDT)
Received: from localhost (localhost [[UNIX: localhost]]) by above.proper.com (8.11.6/8.11.3) id g6OLenO29842 for ietf-pkix-bks; Wed, 24 Jul 2002 14:40:49 -0700 (PDT)
Received: from gonzo.aus.rsa.com (mail.rsasecurity.com.au [203.46.112.10]) by above.proper.com (8.11.6/8.11.3) with SMTP id g6OLelw29836 for <ietf-pkix@imc.org>; Wed, 24 Jul 2002 14:40:47 -0700 (PDT)
Received: from grover by gonzo.aus.rsa.com via smtpd (for mail.imc.org [208.184.76.43]) with SMTP; 24 Jul 2002 21:41:33 UT
Received: from exaus01.local.aus.rsa.com (exaus01.local.aus.rsa.com [10.177.1.15]) by grover.local.aus.rsa.com (8.10.2/8.10.2) with ESMTP id g6OLk8q05950 for <ietf-pkix@imc.org>; Thu, 25 Jul 2002 07:46:08 +1000 (EST)
Received: by exaus01.local.aus.rsa.com with Internet Mail Service (5.5.2653.19) id <NVT7GT81>; Thu, 25 Jul 2002 07:40:38 +1000
Received: from HOUSLEY-LAP.rsasecurity.com (HOUSLEY-LAP [10.3.9.32]) by exna00.securitydynamics.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 3TP40V41; Wed, 24 Jul 2002 17:40:36 -0400
Message-Id: <5.1.0.14.2.20020724173521.034df950@exna07.securitydynamics.com>
X-Sender: rhousley@exna07.securitydynamics.com
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Wed, 24 Jul 2002 17:40:33 -0400
To: ietf-pkix@imc.org
From: "Housley, Russ" <rhousley@rsasecurity.com>
Subject: Wireless LAN Certificate Extensions
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>

At the IETF meeting in Japan last week, I gave a presentation on 
draft-ietf-pkix-wlan-extns-00.txt. I got one question that deserves 
discussion on the list.

The question was: Can the SSID change?  And if so, is there a more stable 
alternative that we could include in the certificate instead.

Yes the SSID can change, but it does not change often.  For example when 
Mobilestar was bought, the SSID was changed to TMOBILE from Mobilestar. 
There isn't a good replacement. One that the authors considered is the 
network name of the RADIUS server/proxy (not the final RADIUS server) which 
would be mobilestar.com in the previous example.  However, this name would 
also change under then same circumstances that cause the SSID to change.

I propose that we stick with SSID as described in the document.

Russ

v2.23.0 | Report a Bug | By Email