Hi, > In the current implementation of EAP-SIM and EAP-AKA authentication, > the payload of IDENTITY REQ was not handled or handled with only > attribute ID.
For EAP-SIM, we just reply identity requests with the configured identity. The same semantics have been implemented for EAP-AKA just last week. > Is there a specific cause for this? I refer to some document about > these two authentication mechanism, IDENTITY REQ payload is still > needed. We do not support all the glory of these protocols, just the basics (no Re-Authentication, Pseudonyms, ...). I think we are in the specs when answering identity requests with our IKE/EAP identity. > So if I want to simulate the whole procedure of SRES and Kc > calculating procedure in SIM card, what algorithms should be > implemented by me. And where I can get the material for comp128-2 and > comp128-3? I'm not very familiar with these GSM specs, but there are probably different variations of these algorithms (this is the case at least for AKA)... Regards Martin _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
