Hello, Nevertheless this looks like a useful extension which can enhance security in 3GPP. As an option this at least this opens the possibility to gradually move towards PFS. Best regards, Julien Maisonneuve, Nokia Corporate Standards.
Jari Arkko <jari.ar...@piuha.net<mailto:jari.ar...@piuha.net>> Tue, 11 December 2018 16:23 UTC Re: optional but everyone requiring a feature. I think in this case the "can require everyone to do it" is probably far away in the future, in practice. Given that Release 15 does not require this extension, it only requires RFC 5448 EAP-AKA' (or the bis), this means that there will be lots of phones and networks that only do the base... if you mandated an extension you'd have lots of users having a problem connecting. It is not completely unthinkable that at some point you'd be in a situation where there's enough deployment to start requiring something, but that would certainly be many years away. Plus some portion of 5G deployment happens in so called Option 3 model, which means no new core, no new protocols (incl. EAP) between the network and the UE. Before you can progress away from that and the RFC 5448-only modes, much time will pass. Jari
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
