[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Ipsec] IKEv2 and EAP-SIM

To: ipsec@xxxxxxxx
Subject: [Ipsec] IKEv2 and EAP-SIM
From: vamsi <vamsi@xxxxxxxxxxxxx>
Date: Tue, 01 Jun 2004 14:42:53 -0700
Cc: ipsec@xxxxxxxxxxxxxxxxx
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
Sender: ipsec-bounces@xxxxxxxx

Hi All,

In section 2.16 of IKEv2 draft states that, when EAP is used, initiator MUST authenticate the server using public key signatures. Some EAP methods provide mutual authentication. Should n't this requirement be relaxed to support EAP methods such as EAP-SIM? I would prefer the statement such as, if EAP method does not support mutual authentication, then the initiator MUST authenticate the responder using public key signatures.

Thanks
Vamsi
CTO Office
Intoto Inc.
www.intoto.com


_______________________________________________
Ipsec mailing list
Ipsec@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ipsec

Follow-Ups:
- [Ipsec] Qos issue related to rfc2401bis
  - From: M.Chenna kesava Reddy
- Re: [Ipsec] IKEv2 and EAP-SIM
  - From: Uri Blumenthal
- Re: [Ipsec] IKEv2 and EAP-SIM
  - From: Yoav Nir

Prev by Date: [Ipsec] Confirmation that IKEv2 is ready
Next by Date: Re: [Ipsec] IKEv2 and EAP-SIM
Previous by thread: [Ipsec] Confirmation that IKEv2 is ready
Next by thread: Re: [Ipsec] IKEv2 and EAP-SIM
Index(es):
- Date
- Thread