[radext] FW: New Version Notification for draft-xue-radext-key-management-02.txt
Xueli <xueli@huawei.com> Mon, 17 February 2014 01:55 UTC
Return-Path: <xueli@huawei.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3AB421A0294 for <radext@ietfa.amsl.com>; Sun, 16 Feb 2014 17:55:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.749
X-Spam-Level:
X-Spam-Status: No, score=-4.749 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.548, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yrlj0dzPSPv2 for <radext@ietfa.amsl.com>; Sun, 16 Feb 2014 17:55:24 -0800 (PST)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) by ietfa.amsl.com (Postfix) with ESMTP id B16B41A0048 for <radext@ietf.org>; Sun, 16 Feb 2014 17:55:20 -0800 (PST)
Received: from 172.18.7.190 (EHLO lhreml204-edg.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id BDQ59436; Mon, 17 Feb 2014 01:55:17 +0000 (GMT)
Received: from LHREML403-HUB.china.huawei.com (10.201.5.217) by lhreml204-edg.china.huawei.com (172.18.7.223) with Microsoft SMTP Server (TLS) id 14.3.158.1; Mon, 17 Feb 2014 01:55:11 +0000
Received: from NKGEML403-HUB.china.huawei.com (10.98.56.34) by lhreml403-hub.china.huawei.com (10.201.5.217) with Microsoft SMTP Server (TLS) id 14.3.158.1; Mon, 17 Feb 2014 01:55:02 +0000
Received: from NKGEML504-MBX.china.huawei.com ([169.254.7.44]) by nkgeml403-hub.china.huawei.com ([10.98.56.34]) with mapi id 14.03.0158.001; Mon, 17 Feb 2014 09:54:54 +0800
From: Xueli <xueli@huawei.com>
To: "radext@ietf.org" <radext@ietf.org>
Thread-Topic: New Version Notification for draft-xue-radext-key-management-02.txt
Thread-Index: AQHPJ9ky/Ak7hdNUI066nFwPMQ5WJ5q4s6CQ
Date: Mon, 17 Feb 2014 01:54:53 +0000
Message-ID: <01FE63842C181246BBE4CF183BD159B448F5D92D@nkgeml504-mbx.china.huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.111.97.86]
Content-Type: multipart/mixed; boundary="_002_01FE63842C181246BBE4CF183BD159B448F5D92Dnkgeml504mbxchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/7-YfFygiiFXAeUG0mViVzYimIvg
Subject: [radext] FW: New Version Notification for draft-xue-radext-key-management-02.txt
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Feb 2014 01:55:27 -0000
Hi The new version about the key management in WLAN network is submitted. The updated abstract is as follows: " When a mobile device (referred to as Station (STA) in this work) tries to connect to a Wireless Local Area Network (WLAN), it needs to first perform mutual authentication with the EAP server of the network. As a result of successful authentication, a Pairwise Master Key (PMK) will be generated, and distributed to the STA and the Authenticator of the network by the EAP server respectively. The PMK is used for securing the subsequent communications between the STA and the Wireless Termination Point (WTP) it attaches to. In practice, the authenticator may not be deployed on the WTP. In this case, an approach is required to help the WTP to obtain the PMK. This work tries to discuss the issues related with this topic and proposes a RADIUS extension to address the problem." This work has been discussed before. The main concern is whether the motivation scenario is reasonable. In another SDO, BBF, we can find the positives feedbacks. Now a project which is Public WiFi Access (WT-321) defines the scenarios about the WLAN network. all the scenarios in section 7, have been got the supports from multiple main operators, including the scenario: BNG acts as the authenticator during EAP procedure, in which case this draft motivates to resolve the existing issues. For your convenient, the new version of WT-321 is attached. In the latest work, we tried to answer the comments from the list and did the editorial work. Your comments are appreciated. Cheers. Best wishes Li Xue and Co-authors. >-----Original Message----- >From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] >Sent: Wednesday, February 12, 2014 5:59 PM >To: Zhangdacheng (Dacheng); Zhangdacheng (Dacheng); Bo Gao; Xueli; Bo Gao; >Xueli >Subject: New Version Notification for draft-xue-radext-key-management-02.txt > > >A new version of I-D, draft-xue-radext-key-management-02.txt >has been successfully submitted by Li Xue and posted to the >IETF repository. > >Name: draft-xue-radext-key-management >Revision: 02 >Title: RADIUS Extensions for Key Management in WLAN network >Document date: 2014-02-10 >Group: Individual Submission >Pages: 13 >URL: >http://www.ietf.org/internet-drafts/draft-xue-radext-key-management-02.txt >Status: >https://datatracker.ietf.org/doc/draft-xue-radext-key-management/ >Htmlized: >http://tools.ietf.org/html/draft-xue-radext-key-management-02 >Diff: >http://www.ietf.org/rfcdiff?url2=draft-xue-radext-key-management-02 > >Abstract: > When a mobile device (referred to as Station (STA) in this work) > tries to connect to a Wireless Local Area Network (WLAN), it needs to > first perform mutual authentication with the EAP server of the > network. As a result of successful authentication, a Pairwise Master > Key (PMK) will be generated, and distributed to the STA and the > Authenticator of the network by the EAP server respectively. The PMK > is used for securing the subsequent communications between the STA > and the Wireless Termination Point (WTP) it attaches to. In > practice, the authenticator may not be deployed on the WTP. In this > case, an approach is required to help the WTP to obtain the PMK. > This work tries to discuss the issues related with this topic and > proposes a RADIUS extension to address the problem. > > > > >Please note that it may take a couple of minutes from the time of submission >until the htmlized version and diff are available at tools.ietf.org. > >The IETF Secretariat