ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Comment on draft-tschofenig-eap-ikev2-15

2007-10-08 06:19:00
from [Eric Rescorla] [Permanent Link] 
As I was reading this document, I realized that I didn't understand
what it was for. 

As I understand it, this document embeds IKEv2 into EAP. Why is this a
good idea? As I understand the situation, EAP already supports a
TLS-based authentication mechanism, which allows it to do both
public-key based and asymmetric-key based authentication. So, what is
IKEv2 bringing to the party here? Obviously, there are things
IKEv2 is good for that TLS is not, but it's not clear to me that
EAP is using any of that functionality.

It seems to me that this document would be improved by a discussion
up front of why it is desirable.

-Ekr



_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Spammers answering TMDA Queries, Frank Ellermann
Next by Date:  Re: Comments on draft-aboba-sg-experiment-02, Eric Rescorla
Previous by Thread:  Comments on draft-aboba-sg-experiment-02, Eric Rescorla
Next by Thread:  Re: Comment on draft-tschofenig-eap-ikev2-15, Jari Arkko
Indexes:  [Date] [Thread] [Top] [All Lists]