[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Shared Secret mismatch in AM3/MM5
This has come up on the list before and been rejected before. It is
a fundamental change to a protocol that is just now getting some serious
analysis. The only justification seems to be the desire to use
pre-shared key authentication with a dynamicly-assigned IP address.
This was not justification enought to change things before and nothing
has changed.
Dan.
On Fri, 29 Oct 1999 15:07:01 EDT you wrote
>
> The solution, as was already pointed out on this list is to redefine SKEYID
> and the signature payloads for shared secrets.
>
> I believe Jianying already suggested:
>
> SKEYID = prf (Ni_b|Nr_b, g^xy) [the same as for signatures]
> AUTH_I = prf (pre-shared-key, HASH_I)
> AUTH_R = prf (pre-shared-key, HASH_R)
>
Follow-Ups:
References: