[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ipsec] IKEv2 and EAP-SIM

To: vamsi <vamsi@xxxxxxxxxxxxx>
Subject: Re: [Ipsec] IKEv2 and EAP-SIM
From: Yoav Nir <ynir@xxxxxxxxxxxxxx>
Date: Wed, 2 Jun 2004 10:04:23 +0300
Cc: ipsec@xxxxxxxx, ipsec@xxxxxxxxxxxxxxxxx
In-reply-to: <>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
References: <>
Sender: ipsec-bounces@xxxxxxxx

See this draft:

http://www.ietf.org/internet-drafts/draft-eronen-ipsec-ikev2-eap-auth -01.txt "Extension for EAP Authentication in IKEv2"

On Jun 2, 2004, at 12:42 AM, vamsi wrote:

Hi All,

In section 2.16 of IKEv2 draft states that, when EAP is used, initiator MUST authenticate the server using public key signatures. Some EAP methods provide mutual authentication. Should n't this requirement be relaxed to support EAP methods such as EAP-SIM? I would prefer the statement such as, if EAP method does not support mutual authentication, then the initiator MUST authenticate the responder using public key signatures.
Thanks
Vamsi
CTO Office
Intoto Inc.
www.intoto.com
_______________________________________________
Ipsec mailing list
Ipsec@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ipsec

_______________________________________________
Ipsec mailing list
Ipsec@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ipsec

References:
- [Ipsec] IKEv2 and EAP-SIM
  - From: vamsi

Prev by Date: [Ipsec] IKEv2 and EAP-SIM
Next by Date: [Ipsec] 688648
Previous by thread: [Ipsec] IKEv2 and EAP-SIM
Next by thread: Re: [Ipsec] IKEv2 and EAP-SIM
Index(es):
- Date
- Thread