>>>>> "Luke" == Luke Howard <[email protected]> writes:
>> 14. In section 5.6.3 - Do I assume that it is so obvious that it
>> does not need to be stated that the EAP negotiated key is used
>> for the MIC w/o any further key derivation work?
Luke> I'm wondering actually whether should derive a new key and use
Luke> RFC 3961 directly rather than GSS_GetMIC(). This might avoid
Luke> some sequencing issues; the MIT Unwrap/VerifyMIC code checks
Luke> sequence numbers within a window, and I'm wondering if there
Luke> might be some attacks because of this. (Of course, this may
Luke> just be an implementation bug, I need to do more research.)
I'd prefer an RFC 3961 getmic directly using the CRK and a new key
usage.
Rationale: makes prot_ready more possible if we ever want to do that.
I thought there was some reason you didn't want to do that though. I
thought I brought up using 3961 directly here.
Reauth?
_______________________________________________
abfab mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/abfab
