[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ipsec] IKEv2 and EAP-SIM



See this draft:

http://www.ietf.org/internet-drafts/draft-eronen-ipsec-ikev2-eap-auth 
-01.txt   "Extension for EAP Authentication in IKEv2"


On Jun 2, 2004, at 12:42 AM, vamsi wrote:

> Hi All,
>
> In section 2.16 of IKEv2 draft states that, when EAP is used,  
> initiator MUST
>     authenticate the server using public key signatures. Some EAP  
> methods provide
>     mutual authentication. Should n't  this requirement be relaxed to  
> support EAP methods
>     such as EAP-SIM?  I would prefer the statement such as, if EAP  
> method does not
>     support mutual authentication, then the initiator MUST  
> authenticate the responder
>     using public key signatures.
>
>
>
> Thanks
> Vamsi
> CTO Office
> Intoto Inc.
> www.intoto.com
>
>
> _______________________________________________
> Ipsec mailing list
> Ipsec@ietf.org
> https://www1.ietf.org/mailman/listinfo/ipsec


_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec