On Apr 9, 2023, at 3:51 PM, Karl Norrman wrote:
> [K]: Correct. The assumption in 1 is that the traffic is protected with IPsec
> or TLS.
> Thanks for the reference. I read it, but it does not seem to consider the
> forward secrecy
> aspects I try to describe here.
I can add some text about P
Hi!
Thanks for the quick reply.
Please see [K] inline.
> -Original Message-
> From: Alan DeKok
> Sent: Sunday, 9 April 2023 20:56
> To: Karl Norrman
> Cc: emu@ietf.org
> Subject: Re: [Emu] System level forward secrecy for EAP+AAA
>
> On Apr 9, 2023, at 2:06 PM, Karl Norrman
> wrote:
>
On Apr 9, 2023, at 2:06 PM, Karl Norrman
wrote:
> Is there any RFC to reference for forward secrecy for the EAP+AAA framework,
> which gives recommendations for preventing the attack below?
>
> Many RFCs for EAP methods and AAA contain various recommendations regarding
> forward secrecy, but I
Hi!
Is there any RFC to reference for forward secrecy for the EAP+AAA framework,
which gives recommendations for preventing the attack below?
Many RFCs for EAP methods and AAA contain various recommendations regarding
forward secrecy, but I did not find any that gives concrete guidance to preve