[radext] FW: New Version Notification for draft-xue-radext-key-management-00.txt
Xueli <xueli@huawei.com> Thu, 28 March 2013 02:12 UTC
Return-Path: <xueli@huawei.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B62F321E8091 for <radext@ietfa.amsl.com>; Wed, 27 Mar 2013 19:12:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.999
X-Spam-Level:
X-Spam-Status: No, score=-5.999 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, J_CHICKENPOX_45=0.6, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5U0xmt1THOTR for <radext@ietfa.amsl.com>; Wed, 27 Mar 2013 19:12:58 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) by ietfa.amsl.com (Postfix) with ESMTP id A449421E808E for <radext@ietf.org>; Wed, 27 Mar 2013 19:12:57 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml203-edg.china.huawei.com) ([172.18.7.190]) by lhrrg02-dlp.huawei.com (MOS 4.3.5-GA FastPath queued) with ESMTP id APV86699; Thu, 28 Mar 2013 02:12:47 +0000 (GMT)
Received: from LHREML406-HUB.china.huawei.com (10.201.5.243) by lhreml203-edg.huawei.com (172.18.7.221) with Microsoft SMTP Server (TLS) id 14.1.323.7; Thu, 28 Mar 2013 02:12:23 +0000
Received: from NKGEML410-HUB.china.huawei.com (10.98.56.41) by lhreml406-hub.china.huawei.com (10.201.5.243) with Microsoft SMTP Server (TLS) id 14.1.323.7; Thu, 28 Mar 2013 02:12:44 +0000
Received: from NKGEML512-MBS.china.huawei.com ([169.254.8.50]) by nkgeml410-hub.china.huawei.com ([10.98.56.41]) with mapi id 14.01.0323.007; Thu, 28 Mar 2013 10:12:41 +0800
From: Xueli <xueli@huawei.com>
To: "radext@ietf.org" <radext@ietf.org>
Thread-Topic: New Version Notification for draft-xue-radext-key-management-00.txt
Thread-Index: AQHODctrXQqgUW2PJUOZQ4tODkgQZpi6lwXw
Date: Thu, 28 Mar 2013 02:12:41 +0000
Message-ID: <01FE63842C181246BBE4CF183BD159B4482A1371@NKGEML512-MBS.china.huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.111.96.95]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Subject: [radext] FW: New Version Notification for draft-xue-radext-key-management-00.txt
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Mar 2013 02:12:58 -0000
Hi all There is a draft to resolve the some issue raised in WLAN network. In the authentication architecture, only STA and AS can manufacture PMK, moreover, AS can only distribute PMK to Authenticator.However, if the authenticator function is not collocated with the encryption/decryption function, it is difficult to achieve traffic encryption/decryption in WLAN network. The purpose of this document is to analyze the requirement and issue for key management that have arisen so far during STA authentication process in WLAN network. Meanwhile, the control messages for key management are defined. Your comments are appreciated. BR Li >-----Original Message----- >From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] >Sent: Monday, February 18, 2013 7:31 PM >To: Xueli >Subject: New Version Notification for draft-xue-radext-key-management-00.txt > > >A new version of I-D, draft-xue-radext-key-management-00.txt >has been successfully submitted by Li Xue and posted to the >IETF repository. > >Filename: draft-xue-radext-key-management >Revision: 00 >Title: RADIUS Extensions for Key Management in WLAN network >Creation date: 2013-02-18 >Group: Individual Submission >Number of pages: 17 >URL: >http://www.ietf.org/internet-drafts/draft-xue-radext-key-management-00.txt >Status: >http://datatracker.ietf.org/doc/draft-xue-radext-key-management >Htmlized: >http://tools.ietf.org/html/draft-xue-radext-key-management-00 > > >Abstract: > In order to guarantee the security and integration of the subscriber > in WLAN network, Pairwise Master Key (PMK) will be generated as an > access authorization token during the mutual authentication procedure > between station (STA) and authenticator server (AS). Then, the PMK > and 4-way handshake are used between STA and Authenticator to derive, > bind and verify the Pairwise Transient Key (PTK), which is a > collection of operational keys for security. Also,Group Transient > Key (GTK) can be derived, and is used to secure multicast/broadcast > traffic. In the authentication architecture, only STA and AS can > manufacture PMK, moreover, AS can only distribute PMK to > Authenticator.However, if the authenticator function is not > collocated with the encryption/decryption function, it is difficult > to achieve traffic encryption/decryption in WLAN network.The purpose > of this document is to analyze the requirement and issue for key > management that have arisen so far during STA authentication process > in WLAN network. Meanwhile, the control messages for key >management > are defined. > > > > >The IETF Secretariat
- [radext] FW: New Version Notification for draft-x… Xueli
- Re: [radext] FW: New Version Notification for dra… Stefan Winter
- Re: [radext] FW: New Version Notification for dra… Bernard Aboba
- Re: [radext] FW: New Version Notification for dra… Behcet Sarikaya
- Re: [radext] FW: New Version Notification for dra… Xueli
- Re: [radext] FW: New Version Notification for dra… Sam Hartman
- Re: [radext] FW: New Version Notification for dra… Xueli
- Re: [radext] FW: New Version Notification for dra… Sam Hartman