Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13

Thu, 12 Sep 2019 07:56:14 -0700 

See comments inline

-----Original Message-----
From: Alan DeKok <al...@deployingradius.com>
Date: Thursday, 12 September 2019 at 15:56
To: Aura Tuomas <tuomas.a...@aalto.fi>
Cc: EMU WG <emu@ietf.org>, "draft-ietf-emu-eap-tl...@ietf.org" 
<draft-ietf-emu-eap-tl...@ietf.org>
Subject: Re: [Emu] POST WGLC Comments draft-ietf-emu-eap-tls13
Resent from: <alias-boun...@ietf.org>
Resent to: John Mattsson <john.matts...@ericsson.com>, <mo...@piuha.net>
Resent date: Thursday, 12 September 2019 at 15:56

>    Alan DeKok wrote:    
>    On Sep 12, 2019, at 9:53 AM, Aura Tuomas <tuomas.a...@aalto.fi> wrote:
>   > 
>    > I was looking at the EAP-TLS with TLS 1.3 draft and noticed that it 
> forbids PSK >authentication. Why is that?
    
There was discussion regarding this on the list some years ago. The conclusion 
was to use the EAP-TLS Type-Code should be exclusively for certificate 
authentication. At that point, nobody expressed wish to use EAP-TLS with PSK 
authentication. If someone wants to use EAP-TLS with symmetric keys that should 
probably be a  new code point.

>      See Section 2.1.2.  TLS 1.3 uses PSK for resumption.  As a result, we 
> *cannot* use PSK for >authentication in EAP-TLS.

I don't understand why this could not be done. My view is that allowing PSK 
authentication would be quite easy.

>    > While there is the EAP-PSK method, I would much rather use EAP-TLS with 
> PSK because it >provides identity protection and perfect forward secrecy, 
> unlike EAP-PSK. 
>    
>      Use EAP-PWD for that.

Standardizing EAP-TLS should only be done if it has some significant advantages 
over EAP-PWD, and there are people wanting to implement and use it. 3GPP is 
e.g. adding  identity protection and perfect forward secrecy to EAP-AKA instead.

>    
>    > In fact, I think EAP-TLS with PSK should become the standard 
> authentication method for >networks that rely on shared secrets, e.g. 
> WPA-Personal. Unifying the Wi-Fi authentication >around EAP would greatly 
> simplify the Wi-Fi protocol stack. Not that I expect it to happen 
> >immediately, but we should not close sensible paths forward.
>    
>      The time to fix that was before TLS 1.3 was standardized.
>    
>      Alan DeKok.
    
    

_______________________________________________
Emu mailing list
Emu@ietf.org
https://www.ietf.org/mailman/listinfo/emu

Reply via email to