Presentation is loading. Please wait.

Presentation is loading. Please wait.

Proposed solutions to comments on section 7

Published by书谋 通 Modified over 5 years ago

Similar presentations

Presentation on theme: "Proposed solutions to comments on section 7"— Presentation transcript:

1 Proposed solutions to comments on section 7

2 Minor comments Doc 294 Minor comments and resolutions
Bad use of “shall” Incorrect cut and paste Not always saying only use ESN functionality if ESN capable Define ID numbers Better diagrams Not clear encrypting only data frames Description of usage of elements should be in section 5 not 7 NULL security to and move rest down We do not mandate all ESN – make recommended not mandatory

3 Major comments Unspecified authentication Kerberos Optimization
Which elements are in which messages How Multicast Ciphers are negotiated ESN without ULA

4 Unspecified authentication
Use of unspecified authentication to allow 802.1X to decide WG discussed this before and there were deployments that it was useful for – reject

5 Kerberos optimization
Information elements are optional, all authentication methods must run without the information elements. The elements defined are optimized for Kerberos

6 Beacon Client may optimize if supplied but if not can find out either via probe or associate/re-associate ASE optional UCSE optional MCSE optional Realm Name optional Principal Name optional

7 Probe Request Client asks for what it wants to optimize, a STA that is not ESN capable does not supply the elements in the response 802.11d Request Element containing ASE, UCSE, MCSE, Realm Name or Principal Name element IDs

8 Probe Response If ESN capable must supply whatever elements were asked for in Probe Req Request Element ASE optional UCSE optional MCSE optional Realm Name optional Principle Name optional

9 Associate Request ASE optional UCSE optional MCSE optional
Left to other STA if not supplied UCSE optional MCSE optional Nonce optional Authentication methods must be able to handle not having them, but optimize the auth protocol

10 Associate Response ASE optional UCSE optional MCSE optional
Must be supplied if defaults not correct and must be within request scope UCSE optional MCSE optional Realm Name optional Authentication methods must be able to handle not having them, but can be used to optimize the auth protocol Principle Name optional Nonce optional

11 Re-associate Request ASE optional UCSE optional MCSE optional
Left to other STA if not supplied UCSE optional MCSE optional

12 Re-associate Response
ASE optional Must be supplied if not defaults not correct and must be within request scope UCSE optional MCSE optional Realm Name optional Authentication methods must be able to handle not having them, but optimize the auth protocol Principle Name optional

13 UCSE/MCSE Each STA/STA pair can negotiate a different UCS
The AP decides the MCS and forces all STAs to it (may be based on the first STA) If MCSE is not specified in response defaults to AES not to UCSE

14 ESN without ULA Should AES without ULA is allowed in ESN?
E.g. For IBSS No allowed, need to support ULA within IBSS

Download ppt "Proposed solutions to comments on section 7"

Similar presentations

Doc.: IEEE 802.11-01/147March 2000 TGe SecuritySlide 1 The Status of TGe S Draft Text Jesse Walker Intel Corporation (503) 712-1849.

Doc.: IEEE /147March 2000 TGe SecuritySlide 1 The Status of TGe S Draft Text Jesse Walker Intel Corporation (503)
Doc.: IEEE 802.11-03/095r0 Submission January 2003 Dan Harkins, Trapeze Networks.Slide 1 Fast Re-authentication Dan Harkins.

Doc.: IEEE /095r0 Submission January 2003 Dan Harkins, Trapeze Networks.Slide 1 Fast Re-authentication Dan Harkins.
Doc.: 11-03-0573r0-I Submission July 22, 2003 Paul Lambert, Airgo NetworksSlide 1 Enabling Encryption in Hotspots by Decoupling the Privacy Field from.

Doc.: r0-I Submission July 22, 2003 Paul Lambert, Airgo NetworksSlide 1 Enabling Encryption in Hotspots by Decoupling the Privacy Field from.
Doc.: IEEE 802.11-12/0032r0 Submission NameAffiliationsAddressPhoneemail Hitoshi MORIOKAAllied Telesis R&D Center 2-14-38 Tenjin, Chuo-ku, Fukuoka 810-0001.

Doc.: IEEE /0032r0 Submission NameAffiliationsAddressPhone Hitoshi MORIOKAAllied Telesis R&D Center Tenjin, Chuo-ku, Fukuoka
Doc.: IEEE 802.11-02/431r0 Submission July 2002 Carlos Rios, RiosTek LLC Slide 1 Pre-Shared Key RSN Extensions Enrollment, Authentication and Key Management.

Doc.: IEEE /431r0 Submission July 2002 Carlos Rios, RiosTek LLC Slide 1 Pre-Shared Key RSN Extensions Enrollment, Authentication and Key Management.
Doc.: IEEE 802.11-14/0509r3 Submission Proposed Resolution to CID 72, 119 and 128 Qian ChenSlide 1 May 2014 Date: 2014-05-21.

Doc.: IEEE /0509r3 Submission Proposed Resolution to CID 72, 119 and 128 Qian ChenSlide 1 May 2014 Date:
Doc.: IEEE 802.11-11-1250-00-00ai Submission Paul Lambert, Marvell TGai Discovery Proposal Author: Abstract Short high-level proposal for discovery techniques.

Doc.: IEEE ai Submission Paul Lambert, Marvell TGai Discovery Proposal Author: Abstract Short high-level proposal for discovery techniques.
Doc.: IEEE 802.11-08/1378r0 Submission November 2008 Darwin Engwer, Nortel NetworksSlide 1 Improving Multicast Reliability Date: 2008-11-11 Authors:

Doc.: IEEE /1378r0 Submission November 2008 Darwin Engwer, Nortel NetworksSlide 1 Improving Multicast Reliability Date: Authors:
Doc.:IEEE 802.11-10/0476r1 Submission Apr. 2010 Santosh Pandey, Cisco SystemsSlide 1 Management Frame Policy Definition Authors: Date: 2010-04-20.

Doc.:IEEE /0476r1 Submission Apr Santosh Pandey, Cisco SystemsSlide 1 Management Frame Policy Definition Authors: Date:
Doc.: IEEE 802.11-10/0100r2 Submission January 2010 Kazuyuki Sakoda, Sony CorporationSlide 1 MAC beaconing sync comment resolution Date: 2010-01-19 Authors:

Doc.: IEEE /0100r2 Submission January 2010 Kazuyuki Sakoda, Sony CorporationSlide 1 MAC beaconing sync comment resolution Date: Authors:
Doc.: IEEE 802.11-04/0485r0 Submission May 2004 Jesse Walker and Emily Qi, Intel CorporationSlide 1 Management Protection Jesse Walker and Emily Qi Intel.

Doc.: IEEE /0485r0 Submission May 2004 Jesse Walker and Emily Qi, Intel CorporationSlide 1 Management Protection Jesse Walker and Emily Qi Intel.
Doc.: IEEE 802.11-07/0448r0 Submission March, 2007 Srinivas SreemanthulaSlide 1 Joiint TGU-802.21: Emergency Identifiers Notice: This document has been.

Doc.: IEEE /0448r0 Submission March, 2007 Srinivas SreemanthulaSlide 1 Joiint TGU : Emergency Identifiers Notice: This document has been.
Doc.: IEEE 802.11-12/0896r0 SubmissionJae Seung Lee, ETRISlide 1 Probe Request Filtering Criteria Date: 2012-07-06 July 2012.

Doc.: IEEE /0896r0 SubmissionJae Seung Lee, ETRISlide 1 Probe Request Filtering Criteria Date: July 2012.
Doc.: IEEE 802.15-15-10-0903-01-004g Submission November, 2010 Roberto Aiello, ItronSlide 1 Project: IEEE P802.15 Working Group for Wireless Personal Area.

Doc.: IEEE g Submission November, 2010 Roberto Aiello, ItronSlide 1 Project: IEEE P Working Group for Wireless Personal Area.
1 Example security systems n Kerberos n Secure shell.

1 Example security systems n Kerberos n Secure shell.
Proposed solutions to comments on section 7

Proposed solutions to comments on section 7
Authentication and Upper-Layer Messaging

Authentication and Upper-Layer Messaging
PANA Discussion and Open Issues (draft-ietf-pana-pana-01.txt)

PANA Discussion and Open Issues (draft-ietf-pana-pana-01.txt)
Wireless II.

Wireless II.
PANA Issues and Resolutions

PANA Issues and Resolutions

Similar presentations

Ads by Google