Dear all, We have submitted a new version of our draft titled “Nimble out-of-band authentication for EAP (EAP-NOOB)”:
https://tools.ietf.org/html/draft-aura-eap-noob-03 The draft defines an EAP method where the authentication is based on a user-assisted out-of-band (OOB) channel between the server and peer. It is intended as a generic bootstrapping solution for Internet-of-Things devices which have no pre-configured authentication credentials and which are not yet registered on the authentication server. Since the previous version, we have improved the clarity of the specification and resolved minor issues that were found in the implementation and formal modeling of the protocol. The quality of the protocol specification has improved a lot and it should now be quite easy to read and implement. The list of updates can be found from the version history in the appendix of the draft. We are still on the process of modeling various failure conditions, such as intentionally dropped messages, and might make minor modifications for the next version to improve the robustness of failure recovery in some special cases. The open source implementation has been updated to match the new version, and the mCRL2 formal model is also available: https://github.com/tuomaura/eap-noob We look forward to your feedback and comments here or on the SAAG mailing list. Regards, Tuomas -----Original Message----- From: internet-dra...@ietf.org <internet-dra...@ietf.org> Sent: Monday, 2 July, 2018 15:04 To: Mohit Sethi <mo...@piuha.net>; Aura Tuomas <tuomas.a...@aalto.fi> Subject: New Version Notification for draft-aura-eap-noob-03.txt A new version of I-D, draft-aura-eap-noob-03.txt has been successfully submitted by Mohit Sethi and posted to the IETF repository. Name: draft-aura-eap-noob Revision: 03 Title: Nimble out-of-band authentication for EAP (EAP-NOOB) Document date: 2018-07-02 Group: Individual Submission Pages: 54 URL: https://www.ietf.org/internet-drafts/draft-aura-eap-noob-03.txt Status: https://datatracker.ietf.org/doc/draft-aura-eap-noob/ Htmlized: https://tools.ietf.org/html/draft-aura-eap-noob-03 Htmlized: https://datatracker.ietf.org/doc/html/draft-aura-eap-noob Diff: https://www.ietf.org/rfcdiff?url2=draft-aura-eap-noob-03 Abstract: Extensible Authentication Protocol (EAP) provides support for multiple authentication methods. This document defines the EAP-NOOB authentication method for nimble out-of-band (OOB) authentication and key derivation. This EAP method is intended for bootstrapping all kinds of Internet-of-Things (IoT) devices that have a minimal user interface and no pre-configured authentication credentials. The method makes use of a user-assisted one-directional OOB channel between the peer device and authentication server. _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
