[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authentication Mechanism Matrix (was L2TP vs IPSEC)

To: "CHINNA N.R. PELLACURU" <pcn@xxxxxxxxx>
Subject: Re: Authentication Mechanism Matrix (was L2TP vs IPSEC)
From: Ben McCann <bmccann@xxxxxxxxxxxxxx>
Date: Wed, 21 Jun 2000 14:47:26 -0400
Cc: Hugo Krawczyk <hugo@xxxxxxxxxxxxxxxxx>, "'IPSRA list'" <ietf-ipsra@xxxxxxxx>
List-archive: <http://www.vpnc.org/ietf-ipsra/mail-archive/>
List-id: <ietf-ipsra.vpnc.org>
List-unsubscribe: <mailto:ietf-ipsra-request@vpnc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-ipsra@xxxxxxxxxxxxx

Chinna:

[RANT ON]

> The best possible deployment path would be to use the legacy
> authentication secret as the IKE pre-shared secret, and in this scheme,
> the customer doesn't have to even write a new protocol, and then remove it
> later on.

This is _not_ possible because legacy authentication servers (such as
Radius or Ace) don't implement IKE authentication. The NAS or Security
Gateway presents the users credentials to Radius or Ace and gets back
PASS or FAIL. These credentials can include:

1. Name and Password (i.e. for PAP)

2. Name, Challenge, and Response (i.e. for CHAP or MSCHAP)

3. Name, Password, and PIN (for Secure ID or other token cards).
   (An ACE server for Secure ID can re-challenge and ask for the
   next PIN thus _another_ PIN value has to obtained from the user).

None of these is possible with IKE because the original pre-shared
key can _not_ be extracted from the HASH payloads exchanged by IKE
and thus it can't be presented to a legacy Radius Server as a password.

It would be possible to add another authentication algorithm to Radius
for IKE pre-shared keys where the Radius server computes the expected
HASH from the user's ID, nonces, etc, but that violates the requirement
of legacy authentication protocol compatibility. And, even if you did
this, it would not be compatible with Secure ID due to the requirement
to challenge for the NEXT pin number. Said challenge would require
another round of IKE packet exchanges.

I also disagree with your statement:

> As I pointed out before, any customer who is still using a legacy
> authentication system that is vulnerable to passive off-line attacks is
> not going to migrate to IPSec anytime in the foreseeable future.

We have converted companies that had 1000's of remote access users 
from dial-up RAS to VPN RAS. The legacy authentication system was fine
for dial-up. The IPSRA group's charter (IMHO) is to make those legacy
authentication systems secure for VPN too.

[RANT OFF]

-Ben McCann

-- 
Ben McCann                              Indus River Networks
                                        31 Nagog Park
                                        Acton, MA, 01720
email: bmccann@xxxxxxxxxxxxxx           web: www.indusriver.com 
phone: (978) 266-8140                   fax: (978) 266-8111

Follow-Ups:
- Re: Authentication Mechanism Matrix (was L2TP vs IPSEC)
  - From: CHINNA N.R. PELLACURU

References:
- RE: Authentication Mechanism Matrix (was L2TP vs IPSEC)
  - From: CHINNA N.R. PELLACURU

Prev by Date: Re: l2tp as ipsra solution
Next by Date: Re: Authentication Mechanism Matrix (was L2TP vs IPSEC)
Previous by thread: RE: Authentication Mechanism Matrix (was L2TP vs IPSEC)
Next by thread: Re: Authentication Mechanism Matrix (was L2TP vs IPSEC)
Index(es):
- Date
- Thread