Dear Michael, > Le 8 sept. 2015 à 03:14, Michael Richardson <[email protected]> a écrit : > > > Alexander Pelov <[email protected]> wrote: >> In our proposal for managing long-range radio networks with CoAP ( >> https://tools.ietf.org/html/draft-pelov-core-cosol-00 ) we’re using >> EAP-over-CoAP. The use of CoAP as signaling protocol, makes it natural >> to go to this solution, as this way we can reuse the whole EAP >> framework that’s already in place. > > EAP-over-CoAP is probably a better choice than over PANA :-) > > But, it seems to me that it ought to be EAP-over-DTLS-over-CoAP, > with the result being creation of a CoAPS context.
I think that you don’t really need DTLS, just the same way you don’t have encryption in 802.1X. You’re only transporting the EAP messages. If you want, you could do EAP-TLS, but I would be more interested in EAP-PSK and EAP-AKA. > > In either case, if you are really doing EAP-TLS, then you wind up with > a ridiculous number of layers. > > One can then run EST or something similar over it. > > Your document seems to intersect with a bunch of other work, I hope to get > back to you with some additional comments. > I would be happy to discuss the different points on which we can collaborate and discuss. Best, Alexander > -- > ] Never tell me the odds! | ipv6 mesh networks [ > ] Michael Richardson, Sandelman Software Works | network architect [ > ] [email protected] http://www.sandelman.ca/ | ruby on rails > [ > _______________________________________________ 6tisch mailing list [email protected] https://www.ietf.org/mailman/listinfo/6tisch
