[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Ipsec] IKEv2 and EAP-SIM

To: ipsec@ietf.org
Subject: [Ipsec] IKEv2 and EAP-SIM
From: vamsi <vamsi@intotoinc.com>
Date: Tue, 01 Jun 2004 14:42:53 -0700
Cc: ipsec@lists.tislabs.com
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=unsubscribe>
Sender: ipsec-bounces@ietf.org

Hi All,

In section 2.16 of IKEv2 draft states that, when EAP is used, initiator MUST
     authenticate the server using public key signatures. Some EAP methods 
provide
     mutual authentication. Should n't  this requirement be relaxed to 
support EAP methods
     such as EAP-SIM?  I would prefer the statement such as, if EAP method 
does not
     support mutual authentication, then the initiator MUST authenticate 
the responder
     using public key signatures.



Thanks
Vamsi
CTO Office
Intoto Inc.
www.intoto.com


_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec

Follow-Ups:
- Re: [Ipsec] IKEv2 and EAP-SIM
  - From: Yoav Nir <ynir@checkpoint.com>
- Re: [Ipsec] IKEv2 and EAP-SIM
  - From: Uri Blumenthal <uri@lucent.com>
- [Ipsec] Qos issue related to rfc2401bis
  - From: "M.Chenna kesava Reddy" <mcreddy@netd.com>

Prev by Date: [Ipsec] Confirmation that IKEv2 is ready
Next by Date: Re: [Ipsec] IKEv2 and EAP-SIM
Previous by thread: [Ipsec] Confirmation that IKEv2 is ready
Next by thread: Re: [Ipsec] IKEv2 and EAP-SIM
Index(es):
- Date
- Thread