On Mon, 4 Jul 2016, Scott Fluhrer (sfluhrer) wrote:
Actually, the draft is a bolt-on to existing authentication methods;
You might object "how is this different from a having a possibly global authentication key";
Because of this, it wouldn't appear to be advisable to wait for the full solution; for people who are concerned about Quantum Computers, it would be appropriate to have a short term solution. In my mind, it's OK if the short term solution doesn't address all possible scenarios; it's sufficient if it provides a way to address the immediate need for those people who are concerned.
In that case, I feel we are back at making a much simpler solution of providing a key identifier that leads to an additional mixing in of SKEYSEED generation. And not add methods of ID hiding. And have something that can be tested by implementations using a shared OTP. If the people discussing this will be in Berlin, perhaps we should put this on the agenda to discuss? Paul _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
