Hi Roman,
Thank you for your review. We have made the necessary changes and published
version -04. I have also explained the changes made in-line below. Hopefully,
the draft is now ready for the next steps.
Regards,
Tuomas
Forwarded Message
Subject:[Emu] AD Review:
Alan, thank you for your review!
We had not thought about the collisions of uft8-username within the realm.
After some discussion, the best solution seemst to be to let the server assign
a full NAI instead of just the Realm. This is the only significant change made
to the new draft 3.
Tuomas
I understand the issues that have been discussed: (1) feature completeness of
the specification, (2) availability of implementations, and (3) compactness of
the binary encoding. We initially, in 2016, considered ASN.1, CBOR and JSON as
equal candidates and rejected CBOR because the
Dave, thank you for the thorough review. It helped to weed out any vague
expressions that could later become stumbling blocks. We incorporated may
changes based on your comments already in draft-ietf-emu-eap-noob-02 (both the
comments below and the ones in the linked pdf). I'll post answers to
On 6/8/20 2:25 PM, Hannes Tschofenig wrote:
> Hi all
> I read through draft-aura-eap-noob-08 during the call for adoption.
> The draft acknowledges that the concept of "onboarding" is a new term for an
> old concept, namely network access authentication. I like the draft from that
> point of
, which I will
work on with my students. Overall, these are very minor issues and, IMO, the
draft is ready for working group adoption.
Tuomas
-Original Message-
From: internet-dra...@ietf.org
Sent: Tuesday, 10 March, 2020 00:25
To: Aura Tuomas ; Mohit Sethi
Subject: New Version
Hi Daniel,
Thank you for the review! I really appreciate you taking the time to read the
draft with such care. I have fixed most of the issues, but some require more
thought and I run out of time for today’s deadline. Responses are inline.
Tuomas
From: Emu On Behalf Of Daniel Migault
Sent:
Hi Philip,
It would definitely be useful to provision various types of long-term
credentials after the security bootstrapping and to use them for
reauthentication later. One way to achieve this with the current spec is to use
the exported AMSK as a shared key for a separate credential
I was looking at the EAP-TLS with TLS 1.3 draft and noticed that it forbids PSK
authentication. Why is that? While there is the EAP-PSK method, I would much
rather use EAP-TLS with PSK because it provides identity protection and perfect
forward secrecy, unlike EAP-PSK.
In fact, I think
Yes, the new Realm assigned in the Initial Exchange should be used already
during the Waiting Exchange and Completion Exchange. As part of the editorial
improvements in draft-06, I edited the specification to be clearer on this
point.
The reason is better compatibility with roaming
,
Tuomas
-Original Message-
From: internet-dra...@ietf.org
Sent: Wednesday, July 3, 2019 3:47 PM
To: Mohit Sethi ; Aura Tuomas
Subject: New Version Notification for draft-aura-eap-noob-06.txt
A new version of I-D, draft-aura-eap-noob-06.txt has been successfully
submitted by Tuomas Aura
Thank you for bringing up this issue. If there is broader demand for NIST
P-256, we certainly can consider adding it to the draft. In any case, it would
make sense to have two different curves in the specification to facilitate
interoperability testing of the cryptosuite negotiation. At this
al Message-
From: Eliot Lear
Sent: Wednesday, 6 March, 2019 15:31
To: Alan DeKok
Cc: Aura Tuomas ; emu@ietf.org
Subject: Re: [Emu] Questions about EAP-NOOB
Importance: High
And indeed it was Alan who I was referring to in my message. I generally agree
with Alan’s thinking below.
Eliot
>
to implement.
Regards,
Tuomas
-Original Message-
From: internet-dra...@ietf.org
Sent: Monday, 11 March, 2019 20:16
To: Mohit Sethi ; Aura Tuomas
Subject: New Version Notification for draft-aura-eap-noob-05.txt
A new version of I-D, draft-aura-eap-noob-05.txt has been successfully
Hi Dan and Rafa,
Thank you for the questions!
Yes, the Initial Exchange in EAP-NOOB always ends in EAP-Failure. Then, we
give some time for the user to transfer the OOB message. After the OOB step,
the peer tries again and the Completion Exchange ends in EAP-Success.
Yes, the out-of-band
Hi Eduardo,
1.
I' not sure what kind of alternative key derivation you are suggesting. Are you
thinking about alternative ECDH curves, or RSA maybe? I believe even the
low-end devices can do ECDHE these days so it is not obvious to me why that
should be sometimes avoided.
2.
This is a valid
or prevent one for a longer time.
Regards,
Tuomas
-Original Message-
From: Shiva Prasad Thagadur Prakash
Sent: Sunday, 4 November, 2018 09:01
To: emu@ietf.org; Aura Tuomas
Subject: Re: [Emu] FW: New Version Notification for draft-aura-eap-noob-04.txt
Importance: High
Hi EMU,
In my
Hi Dan, thank you for the comment.
We have been looking through this and, yes, it might be feasible to use
EAP-NOOB together with your ideas for sending EAP over CoAP.
Regards,
Tuomas
From: Dan García Carrillo
Sent: Wednesday, 31 October, 2018 11:02
To: Aura Tuomas
Cc: emu@ietf.org
Subject
ternet-dra...@ietf.org
Sent: Monday, 22 October, 2018 20:50
To: Mohit Sethi ; Aura Tuomas
Subject: New Version Notification for draft-aura-eap-noob-04.txt
A new version of I-D, draft-aura-eap-noob-04.txt has been successfully
submitted by Tuomas Aura and posted to the IETF repository.
Name:
To: Mohit Sethi ; Aura Tuomas
Subject: New Version Notification for draft-aura-eap-noob-03.txt
A new version of I-D, draft-aura-eap-noob-03.txt has been successfully
submitted by Mohit Sethi and posted to the IETF repository.
Name: draft-aura-eap-noob
Revision: 03
Title
jisc.ac.uk]
Sent: Thursday, 18 February, 2016 19:28
To: Mohit Sethi <mohit.m.se...@ericsson.com>; s...@ietf.org; emu@ietf.org
Cc: Aura Tuomas <tuomas.a...@aalto.fi>
Subject: RE: [saag] Fwd: New Version Notification for draft-aura-eap-noob-00.txt
Hi Mohit,
This is an interesting dra
21 matches
Mail list logo
