>>>>> "Hannes" == Hannes Tschofenig <[EMAIL PROTECTED]> writes:
Hannes> Hi all, before we spend more time considering EAP
Hannes> tunneling methods like PEAP and TTLS I would like to hear
Hannes> the opinion of our ADs on this subject. So far, the
Hannes> working assumption was that EAP methods that tunnel EAP
Hannes> are outside the scope of the working group. These
Hannes> statements were also repeated during the IETF#68 EMU WG
Hannes> meeting by our ADs.
I at least don't recall objecting to a tunnel method. If you're going
to do a tunnel method you do need cryptographic binding when tunneling
something that generates a key.
Bernard objected rather strongly to a tunneled method.
Note that I am not saying you should go in the direction of a tunneled
method; a simple password over tls method is a fine approach. I just
don't recall me making an AD level objection to tunnels.
_______________________________________________
Emu mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/emu
