Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pre-Shared Key EAP methods & EAP-PSK

Published byAugustine Dalton Modified over 5 years ago

Similar presentations

Presentation on theme: "Pre-Shared Key EAP methods & EAP-PSK"— Presentation transcript:

1 Pre-Shared Key EAP methods & EAP-PSK
IETF 60 – San Diego, USA March 2004

2 Are there Pre-Shared Key EAP methods out there?
Standard: MD5-Challenge [RFC3748] - deprecated for security reasons Individual submissions (work in progress): EAP-FAST EAP-SIM/AKA - designed for GSM/UMTS authentication infrastructure EAP-PSK EAP-PAX EAP-TLS - when Pre-Shared Key support is added [I-D.ietf-tls-psk-00] EAP-IKEv2 Individual submissions (work abandoned): EAP-Archie EAP-SKE

3 Developing high-quality standard EAP methods
Nobody is currently chartered to develop EAP methods at IETF, not even EAP WG EAP without EAP method is like a pizza without toppings: useless! There are however (very) good reasons to develop Pre-Shared Key EAP methods They are the simplest ones: start with the easy tasks before moving on to more complicated ones! They would provide insights on EAP: rather than adding features to EAP, we perhaps want to make sure that EAP works well! They are needed in many usage scenarios What do we want to do?

4 Tentative requirements for a Pre-Shared Key EAP method
Pre-Shared Key not Password - IPR issues with ZKPPs Lightweight - use only symmetric cryptography Standalone - why develop methods that accommodate various types of credentials: isn't it redundant with EAP? Available quickly - people don't want to wait more IPR free Secure...

5 EAP-PSK status EAP-PSK is a proposed solution to the community
Current status: draft-bersani-eap-psk-03 published Open source implementation available at:

6 EAP-PSK next steps Slight rework to include explicit session identifiers draft-bersani-eap-psk-04 should be published by September 2004 And then, after security review by experts: Go informational Or will there be a standardization effort? Release Open source implementations On two different platforms Develop extensions for EAP-PSK

7 Any feedback welcome! Florent Bersani, France Telecom R&D

Download ppt "Pre-Shared Key EAP methods & EAP-PSK"

Similar presentations

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P1619.3 April 11, 2007 Andrea Doherty.

1 IETF KEYPROV WG Protocol Basis and Characteristics IEEE P April 11, 2007 Andrea Doherty.
OSPF WG – IETF 68 - Prague OSPF WG Document Candidates Acee Lindem/Redback Networks.

OSPF WG – IETF 68 - Prague OSPF WG Document Candidates Acee Lindem/Redback Networks.
CAPWAP related draft-shao-opsawg-capwap-hybridmac-00 draft-chen-opsawg-capwap-extension-00 draft-zhang-opsawg-capwap-eap-00.

CAPWAP related draft-shao-opsawg-capwap-hybridmac-00 draft-chen-opsawg-capwap-extension-00 draft-zhang-opsawg-capwap-eap-00.
Doc: 11-03-0763-00-0000 Submission September 2003 Dorothy Stanley (Agere Systems) IETF Liaison Report September 2003 Dorothy Stanley – Agere Systems IEEE.

Doc: Submission September 2003 Dorothy Stanley (Agere Systems) IETF Liaison Report September 2003 Dorothy Stanley – Agere Systems IEEE.
DIME WG IETF 82 Dime WG Agenda & Status THURSDAY, November 17, 2011 Jouni Korhonen & Lionel Morand.

DIME WG IETF 82 Dime WG Agenda & Status THURSDAY, November 17, 2011 Jouni Korhonen & Lionel Morand.
November 2005 Dorothy Stanley (Aruba Networks) IEEE 802.11 & EAP Method Types November 2005 Dorothy Stanley – Aruba Networks IEEE 802.11 Liaison – IETF.

November 2005 Dorothy Stanley (Aruba Networks) IEEE & EAP Method Types November 2005 Dorothy Stanley – Aruba Networks IEEE Liaison – IETF.
IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.

IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.
Maryland Information Systems Security Lab D EPARTMENT OF C OMPUTER S CIENCE EAP Password Authenticated eXchange (PAX) T. Charles Clancy William A. Arbaugh.

Maryland Information Systems Security Lab D EPARTMENT OF C OMPUTER S CIENCE EAP Password Authenticated eXchange (PAX) T. Charles Clancy William A. Arbaugh.
EAP-PSK v8 IETF 63 – Paris, France August 2005. EAP-PSK: an independent submission to IESG Requested EAP method type number allocation Reviewed June 2005.

EAP-PSK v8 IETF 63 – Paris, France August EAP-PSK: an independent submission to IESG Requested EAP method type number allocation Reviewed June 2005.
Doc.: IEEE 802.11-04/1062r0 Submission September 2004 F. Bersani, France Telecom R&DSlide 1 Dominos, bonds and watches: discussion of some security requirements.

Doc.: IEEE /1062r0 Submission September 2004 F. Bersani, France Telecom R&DSlide 1 Dominos, bonds and watches: discussion of some security requirements.
Softwire Security Requirement Update draft-ietf-softwire-security-requirements-02.txt IETF Meeting, Prague March 19, 2007 Shu Yamamoto Carl Williams Florent.

Softwire Security Requirement Update draft-ietf-softwire-security-requirements-02.txt IETF Meeting, Prague March 19, 2007 Shu Yamamoto Carl Williams Florent.
OSPF WG Cryptographic Algorithm Implementation Requirements for OSPF draft-bhatia-manral-crypto-req-ospf-00.txt Vishwas Manral, IPInfusion Manav Bhatia,

OSPF WG Cryptographic Algorithm Implementation Requirements for OSPF draft-bhatia-manral-crypto-req-ospf-00.txt Vishwas Manral, IPInfusion Manav Bhatia,
1 Extensible Authentication Protocol (EAP) Working Group IETF-57.

1 Extensible Authentication Protocol (EAP) Working Group IETF-57.
Andrew Allen ROUTING OUT OF DIALOG REQUESTS draft-allen-dispatch-routing-out-of-dialog-request-01 Dispatch IETF 92 March 23 rd 2015.

Andrew Allen ROUTING OUT OF DIALOG REQUESTS draft-allen-dispatch-routing-out-of-dialog-request-01 Dispatch IETF 92 March 23 rd 2015.
1 SECMECH BOF EAP Methods IETF-63 Jari Arkko. 2 Outline Existing EAP methods Technical requirements EAP WG process for new methods Need for new EAP methods.

1 SECMECH BOF EAP Methods IETF-63 Jari Arkko. 2 Outline Existing EAP methods Technical requirements EAP WG process for new methods Need for new EAP methods.
San Diego, November 2006 IETF 67 th – mip6 WG Goals for AAA-HA interface (draft-ietf-mip6-aaa-ha-goals-03) Gerardo Giaretta Ivano Guardini Elena Demaria.

San Diego, November 2006 IETF 67 th – mip6 WG Goals for AAA-HA interface (draft-ietf-mip6-aaa-ha-goals-03) Gerardo Giaretta Ivano Guardini Elena Demaria.
IETF Provisioning of Symmetric Keys (keyprov) WG Update WG Chairs: Phillip Hallam-Baker Hannes Tschofenig Presentation by Mingliang Pei 05/05/2008.

IETF Provisioning of Symmetric Keys (keyprov) WG Update WG Chairs: Phillip Hallam-Baker Hannes Tschofenig Presentation by Mingliang Pei 05/05/2008.
Web Authorization Protocol WG Hannes Tschofenig, Derek Atkins.

Web Authorization Protocol WG Hannes Tschofenig, Derek Atkins.
CAPWAP Threat Analysis

CAPWAP Threat Analysis
Analysis of secured VoIP services

Analysis of secured VoIP services

Similar presentations

Ads by Google