draft-ietf-pana-threats-eval-02.txt

From pana-request@research.telcordia.com Mon Mar 3 13:43:48 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA06990 for ; Mon, 3 Mar 2003 13:43:47 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.6/8.12.1) id h23Igrj3020427; Mon, 3 Mar 2003 13:42:53 -0500 (EST) Resent-Date: Mon, 3 Mar 2003 13:42:53 -0500 (EST) Old-Return-Path: Message-ID: <3E63A1B7.6499B044@research.telcordia.com> Date: Mon, 03 Mar 2003 13:40:55 -0500 From: Subir Das X-Mailer: Mozilla 4.79 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: pana@research.telcordia.com Subject: This is a test message Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Pl. ignore... From pana-request@research.telcordia.com Tue Mar 4 21:34:46 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA19493 for ; Tue, 4 Mar 2003 21:34:41 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h252XU9R017848; Tue, 4 Mar 2003 21:33:30 -0500 (EST) Resent-Date: Tue, 4 Mar 2003 21:33:30 -0500 (EST) Old-Return-Path: x-mimeole: Produced By Microsoft Exchange V6.0.6249.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C2E2BF.861C4A9B" Subject: draft-ietf-pana-threats-eval-02.txt Date: Tue, 4 Mar 2003 18:32:53 -0800 Message-ID: <416B5AF360DED54088DAD3CA8BFBEA6E016C11ED@TNEXVS02.tahoenetworks.com> Thread-Topic: draft-ietf-pana-threats-eval-02.txt Thread-Index: AcLiv4Up8LuHYLpyRre45XDPQuCi3g== From: "Mohan Parthasarathy" To: X-OriginalArrivalTime: 05 Mar 2003 02:32:53.0803 (UTC) FILETIME=[8634BFB0:01C2E2BF] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com This is a multi-part message in MIME format. ------_=_NextPart_001_01C2E2BF.861C4A9B Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello, Here is the latest version of the pana threats evaluation draft. I = missed the deadline and hence could not submit it. http://www.toshiba.com/tari/pana/draft-ietf-pana-threats-eval-02.txt Please send your comments to the list. -mohan ------_=_NextPart_001_01C2E2BF.861C4A9B Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable draft-ietf-pana-threats-eval-02.txt

Hello,

Here is the latest version of the pana = threats evaluation draft. I missed the deadline and hence could
not submit it.

http://www.toshiba.com/tari/pana/draft-ietf-pana-threats-eval-02.txt=

Please send your comments to the = list.

-mohan

------_=_NextPart_001_01C2E2BF.861C4A9B-- From pana-request@research.telcordia.com Wed Mar 5 08:07:46 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA29282 for ; Wed, 5 Mar 2003 08:07:27 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h25D60lH025584; Wed, 5 Mar 2003 08:06:00 -0500 (EST) Resent-Date: Wed, 5 Mar 2003 08:06:00 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: Agenda for: Protocol for carrying Authentication for Network Access (pana) Date: Wed, 5 Mar 2003 07:05:53 -0600 Message-ID: <697DAA22C5004B4596E033803A7CEF44017530A3@daebe007.americas.nokia.com> Thread-Topic: Agenda for: Protocol for carrying Authentication for Network Access (pana) Thread-Index: AcLjF+ZYts2p82USSPm3lomvdAHqxA== From: To: X-OriginalArrivalTime: 05 Mar 2003 13:05:54.0085 (UTC) FILETIME=[F437DD50:01C2E317] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id IAA29282 Hello, Below is the draft agenda for the PANA WG meeting at IETF56. -Basavaraj -------------------------------------------------------------------- [Draft Agenda] Protocol for carrying Authentication for Network Access (pana) WEDNESDAY, March 19, 2003 1530-1730 Afternoon Sessions II ----------------------------------------------- 1. Agenda bashing and WG Doc Status 10 Mins (Chairs) 2. PANA Threat Analysis and security rqmts - Update 10 Mins I-D: o draft-ietf-pana-threats-eval-02.txt (Mohan Parthasarathy) URL: http://www.toshiba.com/tari/pana/draft-ietf-pana-threats-eval-02.txt 3. PANA Requirements update 10 Mins I-D: o draft-ietf-pana-requirements-05.txt (Reinaldo Penno) 4. PANA Protocol Solution 60 Mins I-D: TBA (Design Team) 5. Next Steps 5 Mins (Chairs) From pana-request@research.telcordia.com Fri Mar 7 12:27:19 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA18584 for ; Fri, 7 Mar 2003 12:27:19 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h27HQBif013688; Fri, 7 Mar 2003 12:26:11 -0500 (EST) Resent-Date: Fri, 7 Mar 2003 12:26:11 -0500 (EST) Old-Return-Path: x-mimeole: Produced By Microsoft Exchange V6.0.6249.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: Re: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] Date: Fri, 7 Mar 2003 09:25:17 -0800 Message-ID: <416B5AF360DED54088DAD3CA8BFBEA6E016C1204@TNEXVS02.tahoenetworks.com> Thread-Topic: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] Thread-Index: AcLitcauBMhv6wy9Q9KkllwsE7dHDwBkxBPgACFIiWA= From: "Mohan Parthasarathy" To: , Cc: X-OriginalArrivalTime: 07 Mar 2003 17:25:18.0312 (UTC) FILETIME=[860BEE80:01C2E4CE] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id MAA18584 The document looks good except for these minor issues. 1) In section 2, Problem statement "Access networks usually require clients to go through an authentication and authorization process unless physical security is used as a substitute". In section 3.1, PANA with physical layer security, "In the networks where a certain degree of security is provided at physical layer, authenticating the client is still essential since physical layer does not provide information on the client..." It is not a major thing. But it was a bit confusing to read. 2) In section (2), Initial client authentication needs to be bound to subsequent traffic to prevent spoofing and hijacking of data packets. What do you mean by hijacking of data packets ? Therefore, this authentication might be required to generate cryptographic keying material unless presence of a secure physical or link-layer channel is assured prior to it. "assured prior to it" is a bit confusing to me. So, this can be reworded to "Therefore this authentication might be required to generate cryptographic keying material unless the link is secure at physical or link layer". 3) In section (2), following 2 sentences are still confusing me. PANA is only responsible for carrying EAP and it should not have to deal with the keying material.Once the keying material is present You talked about the need for generating key material a few lines back. Here we are saying PANA will not do it. I think you may want to say, that EAP will be used to generate the keying materail (refer that EAP-keying draft). The mechanisms that are used to turn keying material produced by the initial authentication method into link-layer or network-layer ciphers are outside the scope of PANA. Is it outside the scope PANA or PANA WG ? The next question someone will ask is "how does PANA prevent service theft" ? 4) In section (3.3), towards the end A solution like PANA at the network layer may be adequate if it can specify appropriate authentication methods that can derive and distribute keys for authentication, integrity and confidentiality of data traffic either at the link or at the network layer. Again it is not clear what PANA is doing here. And confidentiality can be removed i think as per the last ietf meeting. 5) In section 3.6, Limited Free Access, On the other hand, access to further services or sites using such local networks requires authentication and authorization. If users want such services, the access network can detect that attempt and initiate authentication. This also allows the network to initiate the authentication whenever appropriate. I think the last sentence can be modified to "This also allows the network to initiate the authentication to authenticate the client whenever appropriate". You may ignore this if it is redundant. But when i read it first time, it was a bit confusing. thanks mohan > -----Original Message----- > From: Alper Yegin [mailto:alper@docomolabs-usa.com] > Sent: Tuesday, March 04, 2003 5:23 PM > To: Mohan Parthasarathy > Subject: FW: WG Last Call: > draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > Hi Mohan, > > If you have time, can you please take a look at this and > provide comments > for the LC? It's a short and easy reading. It got reviewed by > folks before, > this is the WG last call.. Deadline is March 11th, next Tuesday. > > Thank you. > > alper > > > ------ Forwarded Message > From: > Date: Tue, 25 Feb 2003 17:35:59 -0600 > To: > Cc: , > Subject: RE: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt > [Correction] > Resent-From: pana@research.telcordia.com > Resent-Date: Tue, 25 Feb 2003 18:39:52 -0500 (EST) > > > Correction about the date for receiving comments: > > March 11th 2003 is the deadline for receiving comments on this draft. > > -Basavaraj > > > > > Hello, > > > > This is a WG last call for: Problem Space and Usage > Scenarios for PANA > > I-D : draft-ietf-pana-usage-scenarios-04.txt > > > > Status sought : Informational > > > > Please send in your comments by April 11th, 2003 to the WG > discussion > ^^^^^^^^^^^^^^^^ > > list. > > > > -Chairs > > > > > > > > ------ End of Forwarded Message > > From pana-request@research.telcordia.com Mon Mar 10 05:53:30 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA16370 for ; Mon, 10 Mar 2003 05:53:11 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2AAqI8W003006; Mon, 10 Mar 2003 05:52:18 -0500 (EST) Resent-Date: Mon, 10 Mar 2003 05:52:18 -0500 (EST) Old-Return-Path: Message-ID: <3E6C6E0D.5080808@alcatel.fr> Date: Mon, 10 Mar 2003 11:50:53 +0100 From: Yacine.El_Mghazli@alcatel.fr Organization: Alcatel R&I User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: fr-fr MIME-Version: 1.0 To: pana Subject: COPS-PR for PAA-EP interface X-MIMETrack: Itemize by SMTP Server on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/10/2003 11:50:53, Serialize by Router on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/10/2003 11:50:54, Serialize complete at 03/10/2003 11:50:54 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) X-Virus-Scanned: by amavisd-new Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit hi folks, this proposal considers the applicability of existing COPS-PR protocol for the PAA-EP communication: http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt below is a summary of how COPS-PR meets the PAA-EP protocol identified requirements. I'll do an update as soon as these requirements are finalized. --- security the PAA-EP protocol needs to guaranty identity, confidentiality and integrity [COPS]: provides message level security for authentication, replay protection, and message integrity. COPS can make use of existing protocols for security such as IPSEC or TLS to authenticate and secure the channel between the PEP(EP) and the PDP(PAA). --- keep-alives protocol used between PAA and EP should be able to detect inactive peer within an appropiate time period and delete the related states. [COPS]: KA messages are sent with a time-period set by the PDP(PAA) at session startup. --- event notification architecture needs to allow PaC and PAA initiated authentication [COPS]: COPS-PR can also be used following the outsourcing (pull) model. For example, in a very similar context, 3GPP does it this way for PCF to control GGSN (Go interface). --- pull method have a mechanism for a newly introduced EP to learn the policies currently in effect on that access network. [COPS]: the initial configuration request/decision can do this. --- push method PAA should be able to notify an EP for allowing/disallowing access for a particular client. This should happen without EP sending a request to the PAA. [COPS]: the successive configuration decisions do this. thanks, yacine From pana-request@research.telcordia.com Mon Mar 10 15:25:26 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA12396 for ; Mon, 10 Mar 2003 15:25:23 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2AKOgWT011347; Mon, 10 Mar 2003 15:24:42 -0500 (EST) Resent-Date: Mon, 10 Mar 2003 15:24:42 -0500 (EST) Old-Return-Path: Date: Mon, 10 Mar 2003 12:24:25 -0800 Subject: PANA protocol specification version 00 here From: Alper Yegin To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <0cdHRD.A.LxC.JSPb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hello, PANA design team has concluded its work and produced the version 00 of the PANA protocol specification. Since we missed the deadline, it won't be posted on the IETF repository until after the SF meeting. Draft: http://www.toshiba.com/tari/pana/draft-ietf-pana-pana-00.txt Mailing list archive: http://danforsberg.info/pipermail/pana-dt/ Please see the PANA supplemental web page, http://www.toshiba.com/tari/pana/pana.htm, for more information. Please read the draft and provide comments before the IETF meeting. The solution discussions at the meeting will be centered around this draft, hence it is part of the mandatory reading. - chairs From pana-request@research.telcordia.com Tue Mar 11 00:20:54 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA27616 for ; Tue, 11 Mar 2003 00:20:53 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2B5KADS013836; Tue, 11 Mar 2003 00:20:10 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 00:20:10 -0500 (EST) Old-Return-Path: Date: Mon, 10 Mar 2003 21:19:46 -0800 Subject: Requirements draft, version 05 From: Alper Yegin To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hello, The requirements draft missed the IETF deadline. Here is the updated version, 05: http://www.toshiba.com/tari/pana/draft-ietf-pana-requirements-05.txt The changes are: * Definition of EP added. * Text is clarified to indicate some of the requirements are satisfied by EAP and EAP methods. * IP address pre-configuration requirement changed. * EAP lower layer requirements section added. * Location of PAA further clarified (link vs. subnet vs. IP hops). * PAA-EP protocol section added. Comments are welcome. alper From pana-request@research.telcordia.com Tue Mar 11 00:42:12 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id AAA28233 for ; Tue, 11 Mar 2003 00:42:12 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2B5fQEE014720; Tue, 11 Mar 2003 00:41:26 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 00:41:26 -0500 (EST) Old-Return-Path: Date: Mon, 10 Mar 2003 21:41:22 -0800 Subject: Re: Agenda for: Protocol for carrying Authentication for Network Access (pana) From: Alper Yegin To: Message-ID: In-Reply-To: <697DAA22C5004B4596E033803A7CEF44017530A3@daebe007.americas.nokia.com> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <6-Jf4D.A.4lD.FcXb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hello, This is the agenda, with the I-D information. The drafts are mandatory reading, please read them before the meeting. - Chairs Protocol for carrying Authentication for Network Access (pana) WEDNESDAY, March 19, 2003 1530-1730 Afternoon Sessions II ----------------------------------------------- 1. Agenda bashing and WG doc status, 10 Mins, Chairs 2. PANA Threat Analysis and Security Reqs. update, 10 Mins, Mohan Parthasarathy draft-ietf-pana-threats-eval-02.txt 3. PANA Requirements update, 10 Mins, Reinaldo Penno http://www.toshiba.com/tari/pana/draft-ietf-pana-requirements-05.txt 4. PANA Protocol Solution, 60 Mins, Design Team http://www.toshiba.com/tari/pana/draft-ietf-pana-pana-00.txt 5. Next Steps, 5 Mins, Chairs From pana-request@research.telcordia.com Tue Mar 11 08:35:24 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA18904 for ; Tue, 11 Mar 2003 08:35:24 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2BDY4Ai012469; Tue, 11 Mar 2003 08:34:04 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 08:34:04 -0500 (EST) Old-Return-Path: Date: Tue, 11 Mar 2003 14:33:52 +0100 From: Julien Bournelle To: Alper Yegin Cc: pana@research.telcordia.com Subject: Re: PANA protocol specification version 00 here Message-ID: <20030311133352.GQ35790@ipv6-5.int-evry.fr> Mail-Followup-To: Alper Yegin , pana@research.telcordia.com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4i Sender: Julien Bournelle X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com > > Please read the draft and provide comments before the IETF meeting. > The solution discussions at the meeting will be centered around this draft, > hence it is part of the mandatory reading. Hi, I've just read the draft and I just wanted to know why the PaC doesn't have any way to "authenticate" the PAA ?. Aren't we vulnerable to a MiTM if it can't be sure to whom is giving authentication information ? thanks julien.bournelle@int-evry.fr From pana-request@research.telcordia.com Tue Mar 11 11:28:08 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA26139 for ; Tue, 11 Mar 2003 11:28:04 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2BGQZpL024641; Tue, 11 Mar 2003 11:26:35 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 11:26:35 -0500 (EST) Old-Return-Path: Date: Tue, 11 Mar 2003 17:25:30 +0100 From: Julien Bournelle To: pana@research.telcordia.com Subject: PANA and handover Message-ID: <20030311162530.GT35790@ipv6-5.int-evry.fr> Mail-Followup-To: pana@research.telcordia.com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4i Sender: Julien Bournelle X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Hi, If a PaC do a handover and change of AP (e.G. in case of 802.11b) it could change of PAA and EP. In such a case the new PAA will try to authenticate him whereas it has already been authenticated to the previous PAA. MAybe it could be a benefit to add the abality to the PaC to inform the new PAA of the previous PAA. As such the new PAA could retrieve information from previous PAA without reauthenticate the PaC. julien.bournelle@int-evry.fr From pana-request@research.telcordia.com Tue Mar 11 15:57:34 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA11907 for ; Tue, 11 Mar 2003 15:57:32 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2BKtlKA013249; Tue, 11 Mar 2003 15:55:47 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 15:55:47 -0500 (EST) Old-Return-Path: Reply-To: From: "Hannes Tschofenig" To: "Julien Bournelle" , Subject: RE: PANA and handover Date: Tue, 11 Mar 2003 21:40:50 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) Importance: Normal In-Reply-To: <20030311162530.GT35790@ipv6-5.int-evry.fr> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit hi we have shortly discussed mobility issues within pana. there are still open issues there. > Hi, > > If a PaC do a handover and change of AP (e.G. in case of 802.11b) > it could change of PAA and EP. In such a case the new PAA will > try to authenticate him whereas it has already been authenticated > to the previous PAA. MAybe it could be a benefit to add the abality > to the PaC to inform the new PAA of the previous PAA. As such the > new PAA could retrieve information from previous PAA without > reauthenticate the PaC. there are various issues here. most of them are associated with performance improvements. - type of mobility: micro-/macro-mobility i guess we talk about intra-domain mobility only. - type of authentication performed after the handover a) we could avoid interaction with aaah. b) we could avoid interaction with aaal. for (a) people have suggested to case session keys at the local aaa server. this provides performance improvement by skipping a inter-domain communciation to the home aaa server. for (b) an interaction with a intra-domain mobility protocol is possible. the protocol machinery is very simple. further work on this topic requires that we make progress on the pana protocol first. thank you for your comment. ciao hannes > > julien.bournelle@int-evry.fr > From pana-request@research.telcordia.com Tue Mar 11 15:57:38 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA11921 for ; Tue, 11 Mar 2003 15:57:37 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2BKtUCi013220; Tue, 11 Mar 2003 15:55:30 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 15:55:30 -0500 (EST) Old-Return-Path: Reply-To: From: "Hannes Tschofenig" To: "Julien Bournelle" , "Alper Yegin" Cc: Subject: RE: PANA protocol specification version 00 here Date: Tue, 11 Mar 2003 21:40:56 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) Importance: Normal In-Reply-To: <20030311133352.GQ35790@ipv6-5.int-evry.fr> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit hi julien, please find my answer below: > > > > Please read the draft and provide comments before the IETF meeting. > > The solution discussions at the meeting will be centered around > this draft, > > hence it is part of the mandatory reading. > > Hi, > > I've just read the draft and I just wanted to know > why the PaC doesn't have any way to "authenticate" the > PAA ?. eap does not describe where the other end point is. it could also be the paa. even if the eap end point is the aaal or the aaah then the trust relationship between them allows to establish a financial settlement between the two networks. in some cases it is not even desired to authenticate the end host to the access network itself - think of user identity confidentiality. with user id conf. the pac authenticates himself to the home aaa server using the aaa infrastructure and the home network of the pac provides some assurance for the financial settlement. furthermore, since you establish a pana security association (which requires that the session key is transferred from the eap end point to the paa) you actually provide key confirmation. i have to mention that we discussed two possible approaches to provide network access authentication. you can find our discussions at a separate mailing list: http://danforsberg.info/mailman/listinfo/pana-dt these issues have, however, been discussed with a different purpose. > > Aren't we vulnerable to a MiTM if it can't be sure > to whom is giving authentication information ? actually, i would say no. however, the answer is not that simple. to some extend it depends on your eap method. if you provide a user name/password to a network then this network might misuse your credentials. however, even with pac-to-paa authentication the end host does not get this gurantee. for the pana protocol we made the working assumption that we don't want to fix authentication and key exchange protocols. this is left to the responsibility to those entities using the eap method (e.g. to the home network provider where the user is subscribed). for further discussion on some of these topics take a look at some discussion items found at: http://www.tschofenig.com/pana/ was i able to provide you an answer? ciao hannes > > thanks > > julien.bournelle@int-evry.fr > From pana-request@research.telcordia.com Tue Mar 11 20:27:17 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA22010 for ; Tue, 11 Mar 2003 20:27:16 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2C1LVHE000033; Tue, 11 Mar 2003 20:21:31 -0500 (EST) Resent-Date: Tue, 11 Mar 2003 20:21:31 -0500 (EST) Old-Return-Path: Message-Id: <4.3.2.7.2.20030311165922.01ebc3f8@mira-sjcm-3.cisco.com> X-Sender: gdommety@mira-sjcm-3.cisco.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Tue, 11 Mar 2003 17:13:02 -0800 To: , From: Gopal Dommety Subject: Re: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt In-Reply-To: <697DAA22C5004B4596E033803A7CEF4401752FE8@daebe007.americas .nokia.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Hello All: I quickly went through the draft. My personal opinion is that it would be good to expand the scope to include Authorization (of services etc). This draft seems to indicate that PANA is a protocol for Authentication. It is not clear to me where we stand on authorization. There have been occasional references to authorization (that makes me think the authorization is in the scope). For example: 3.6. Limited Free Access "Certain networks might allow clients to access a limited topology without any explicit authentication and authorization" and seems to indicate that pana will be used to do authorization. 3.2. PANA with Link-Layer Security "But it (the existing gsm/cdma networks) does not necessarily provide authorization at the network- layer which can be done by authenticating the client to an ISP. So this still necessitates another layer of authentication. It should be noted that this second authentication takes place over a secure channel" My personal opinion is that it would be good to expand the scope to include Authorization (of services etc). Let me know if you need me to articulate it better or contribute. Thanks Gopal From pana-request@research.telcordia.com Wed Mar 12 06:41:54 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA00623 for ; Wed, 12 Mar 2003 06:41:40 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CBeWhD002045; Wed, 12 Mar 2003 06:40:32 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 06:40:32 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 12:37:39 +0100 From: Julien Bournelle To: Hannes Tschofenig Cc: pana@research.telcordia.com Subject: Re: PANA and handover Message-ID: <20030312113739.GM67751@ipv6-5.int-evry.fr> Mail-Followup-To: Hannes Tschofenig , pana@research.telcordia.com References: <20030311162530.GT35790@ipv6-5.int-evry.fr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4i Sender: Julien Bournelle X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <2DWik.A.1f.vyxb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com > > it could change of PAA and EP. In such a case the new PAA will > > try to authenticate him whereas it has already been authenticated > > to the previous PAA. MAybe it could be a benefit to add the abality > > to the PaC to inform the new PAA of the previous PAA. As such the > > new PAA could retrieve information from previous PAA without > > reauthenticate the PaC. > > there are various issues here. most of them are associated with performance > improvements. > > - type of mobility: micro-/macro-mobility > i guess we talk about intra-domain mobility only. exactly, in inter-domain mobility I guess that we need to contact aaah. > > - type of authentication performed after the handover > > a) we could avoid interaction with aaah. > b) we could avoid interaction with aaal. > > for (a) people have suggested to case session keys at the local aaa server. > this provides performance improvement by skipping a inter-domain > communciation to the home aaa server. > I agree > for (b) an interaction with a intra-domain mobility protocol is possible. > the protocol machinery is very simple. further work on this topic requires > that we make progress on the pana protocol first. ok, basically, I thought that it could be a flag in the PANA_start from the PaC indicating that it has been previously authenticated and information permitting to the PAA to be sure of this. Sure there are problems concerning EP configuration, session key etc... and what information the PaC must furnish. From pana-request@research.telcordia.com Wed Mar 12 07:13:29 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA01350 for ; Wed, 12 Mar 2003 07:13:29 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CCDjnu003461; Wed, 12 Mar 2003 07:13:45 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 07:13:45 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F17@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Julien Bournelle'" , Hannes Tschofenig Cc: pana@research.telcordia.com Subject: RE: PANA and handover Date: Wed, 12 Mar 2003 13:13:36 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <68X3_D.A.91.4Ryb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi Julien! please see my comments inline: - snip - > > > for (b) an interaction with a intra-domain mobility > protocol is possible. > > the protocol machinery is very simple. further work on this > topic requires > > that we make progress on the pana protocol first. > > ok, basically, I thought that it could be a flag in the > PANA_start from the PaC > indicating that it has been previously authenticated and information > permitting to the PAA to be sure of this. Sure there are problems > concerning EP configuration, session key etc... and what > information the PaC > must furnish. if we provide some interaction with the intra-domain mobility protocol then it would be nice to have some sort of context transfer. thereby it is possible to make use of work done in the seamoby group to forward context transfer information from the old access router to the new one. the context which needs to be transferred is - pana sa - maybe device identifier information (needs to be adjusted after mobility) - ipsec (if ipsec sa is established after pana exchange) to specify exactly what information needs to be transferred (at this stage) is hard since we haven't discussed all details of a pana protocol yet. hence i guess this is subject for future work. we should, however, keep it in mind. if no such context transfer procedure is available then the best which can be provided is communication to the local aaa server (instead a full aaa roundtrip to the home aaa server). this is also not too bad. i think that other proposals using tokens, tickets, cookies etc., which have been considered in the environment of seamoby, are less favorable since they require some information to be exchanged to the end host (over a possible scarce radio resource) and in most cases provide the same functionality as ct (some even provide less). i fully agree with you that some attention should also be paid to mobility environments where performance (computational, bandwidth and latency) matters. with respect to the refresh messages i guess we have already thought about mobility handling a bit. what do you think? does this sound like a resonable approach? ciao hannes > From pana-request@research.telcordia.com Wed Mar 12 07:23:24 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA01491 for ; Wed, 12 Mar 2003 07:23:23 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CCNZVr003977; Wed, 12 Mar 2003 07:23:35 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 07:23:35 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: PANA and handover Date: Wed, 12 Mar 2003 14:23:27 +0200 Message-ID: Thread-Topic: PANA and handover Thread-Index: AcLokT/uFOlMtLcqSNOCj5HPSNchQQAAD50w From: To: , , Cc: X-OriginalArrivalTime: 12 Mar 2003 12:23:28.0005 (UTC) FILETIME=[2F872350:01C2E892] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <6ZDCmB.A.B-.Hbyb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id HAA01491 Hanness and Julien, I think this is a reasonable approach. Together with CT, the AAA session must be updated also. We have a draft about this: draft-liu-aaa-diameter-session-mobility-00.txt Any comments are welcome to the aaa wg mailing list. BR, - Dan > -----Original Message----- > From: ext Tschofenig Hannes [mailto:Hannes.Tschofenig@mchp.siemens.de] > Sent: 12 March, 2003 14:14 > To: 'Julien Bournelle'; Hannes Tschofenig > Cc: pana@research.telcordia.com > Subject: RE: PANA and handover > > > hi Julien! > > please see my comments inline: > > - snip - > > > > > > for (b) an interaction with a intra-domain mobility > > protocol is possible. > > > the protocol machinery is very simple. further work on this > > topic requires > > > that we make progress on the pana protocol first. > > > > ok, basically, I thought that it could be a flag in the > > PANA_start from the PaC > > indicating that it has been previously authenticated and > information > > permitting to the PAA to be sure of this. Sure there are problems > > concerning EP configuration, session key etc... and what > > information the PaC > > must furnish. > > if we provide some interaction with the intra-domain mobility > protocol then > it would be nice to have some sort of context transfer. thereby it is > possible to make use of work done in the seamoby group to > forward context > transfer information from the old access router to the new > one. the context > which needs to be transferred is > - pana sa > - maybe device identifier information (needs to be adjusted > after mobility) > - ipsec (if ipsec sa is established after pana exchange) > > to specify exactly what information needs to be transferred > (at this stage) > is hard since we haven't discussed all details of a pana > protocol yet. hence > i guess this is subject for future work. we should, however, > keep it in > mind. > > if no such context transfer procedure is available then the > best which can > be provided is communication to the local aaa server (instead > a full aaa > roundtrip to the home aaa server). this is also not too bad. > > i think that other proposals using tokens, tickets, cookies > etc., which have > been considered in the environment of seamoby, are less > favorable since they > require some information to be exchanged to the end host > (over a possible > scarce radio resource) and in most cases provide the same > functionality as > ct (some even provide less). > > i fully agree with you that some attention should also be > paid to mobility > environments where performance (computational, bandwidth and latency) > matters. with respect to the refresh messages i guess we have already > thought about mobility handling a bit. > > what do you think? does this sound like a resonable approach? > > ciao > hannes > > > > > From pana-request@research.telcordia.com Wed Mar 12 08:37:06 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA03086 for ; Wed, 12 Mar 2003 08:37:06 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CDb39e007512; Wed, 12 Mar 2003 08:37:03 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 08:37:03 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 14:33:56 +0100 From: Julien Bournelle To: Tschofenig Hannes Cc: pana@research.telcordia.com Subject: Re: PANA and handover Message-ID: <20030312133356.GD76530@ipv6-5.int-evry.fr> Mail-Followup-To: Tschofenig Hannes , pana@research.telcordia.com References: <2A8DB02E3018D411901B009027FD3A3F03675F17@mchp905a.mch.sbs.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2A8DB02E3018D411901B009027FD3A3F03675F17@mchp905a.mch.sbs.de> User-Agent: Mutt/1.4i Sender: Julien Bournelle X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <3eVf9.A.R1B._fzb-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com > > what do you think? does this sound like a resonable approach? it seems a reasonable approach. thanks julien.bournelle@int-evry.fr From pana-request@research.telcordia.com Wed Mar 12 11:54:38 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA10856 for ; Wed, 12 Mar 2003 11:54:38 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CGrPAf021127; Wed, 12 Mar 2003 11:53:25 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 11:53:25 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 11:53:02 -0500 To: Mohan Parthasarathy Cc: basavaraj.patil@nokia.com, pana@research.telcordia.com, alper@docomolabs-usa.com Subject: Re: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] Message-ID: <20030312165302.GC962@catfish> Mail-Followup-To: Mohan Parthasarathy , basavaraj.patil@nokia.com, pana@research.telcordia.com, alper@docomolabs-usa.com References: <416B5AF360DED54088DAD3CA8BFBEA6E016C1204@TNEXVS02.tahoenetworks.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-2022-jp Content-Disposition: inline In-Reply-To: <416B5AF360DED54088DAD3CA8BFBEA6E016C1204@TNEXVS02.tahoenetworks.com> User-Agent: Mutt/1.5.3i From: Yoshihiro Ohba X-Dispatcher: imput version 20021213(IM143) Lines: 119 X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Hi Mohan, Thanks for reviewing the draft and sorry for my delayed response. Please see my comments in line. On Fri, Mar 07, 2003 at 09:25:17AM -0800, Mohan Parthasarathy wrote: > > The document looks good except for these minor issues. > > 1) In section 2, Problem statement > > "Access networks usually require clients to go through an authentication and > authorization process unless physical security is used as a substitute". > > In section 3.1, PANA with physical layer security, > > "In the networks where a certain degree of security is provided at physical > layer, authenticating the client is still essential since physical layer > does not provide information on the client..." > > It is not a major thing. But it was a bit confusing to read. I see. Perhaps we can remove "unless physical security is used as a substitute" from the sentense in section 2. > > 2) In section (2), > > Initial client authentication needs > to be bound to subsequent traffic to prevent spoofing and hijacking > of data packets. > > What do you mean by hijacking of data packets ? It means service theft. So how about the following? Initial client authentication needs to be bound to subsequent traffic to prevent spoofing of data packets and resulting service theft. > > Therefore, this authentication might be required to > generate cryptographic keying material unless presence of a secure > physical or link-layer channel is assured prior to it. > > "assured prior to it" is a bit confusing to me. So, this can be reworded to > > "Therefore this authentication might be required to generate cryptographic > keying material unless the link is secure at physical or link layer". Yes, that would be better. > > > 3) In section (2), following 2 sentences are still confusing me. > > PANA is only responsible for carrying EAP and it should not have > to deal with the keying material.Once the keying material is present > > You talked about the need for generating key material a few lines back. > Here we are saying PANA will not do it. I think you may want to say, that > EAP will be used to generate the keying materail (refer that EAP-keying draft). I think the following already mentions the use of EAP to generate the keying material: "The task of generating and distributing such keying material can be accomplished by various authentication methods carried by EAP." Isn't it enough? > > The mechanisms that are used to turn keying material produced by > the initial authentication method into link-layer or network-layer > ciphers are outside the scope of PANA. > > Is it outside the scope PANA or PANA WG ? The next question someone will ask > is "how does PANA prevent service theft" ? According to the current charter, defining key distribution, key agreement or key derivation protocols is out of the scope of PANA. On the other hand, the text talks about key derivation mechanisms, not key derivation protocols, and the mechanisms may be in the sope of PANA... What do others think? > > 4) In section (3.3), towards the end > > A solution like PANA at the network layer may be adequate if it can > specify appropriate authentication methods that can derive and distribute > keys for authentication, integrity and confidentiality of data traffic > either at the link or at the network layer. > > Again it is not clear what PANA is doing here. And confidentiality can be removed > i think as per the last ietf meeting. I'm not sure which part is not clear in the above text. Could you elaborate or provide suggested text? > > 5) In section 3.6, Limited Free Access, > > On the other hand, access to further services or sites using such local > networks requires authentication and authorization. If users want such > services, the access network can detect that attempt and initiate > authentication. This also allows the network to initiate the > authentication whenever appropriate. > > I think the last sentence can be modified to "This also allows the network to > initiate the authentication to authenticate the client whenever appropriate". > You may ignore this if it is redundant. But when i read it first time, it was > a bit confusing. OK. Thanks, Yoshihiro Ohba From pana-request@research.telcordia.com Wed Mar 12 12:00:27 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA11051 for ; Wed, 12 Mar 2003 12:00:27 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CH0NPs021581; Wed, 12 Mar 2003 12:00:23 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 12:00:23 -0500 (EST) Old-Return-Path: Message-ID: <3E6F6794.7000407@alcatel.fr> Date: Wed, 12 Mar 2003 18:00:04 +0100 From: Yacine.El_Mghazli@alcatel.fr Organization: Alcatel R&I User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: fr-fr MIME-Version: 1.0 To: pana Subject: multiples PAAs X-MIMETrack: Itemize by SMTP Server on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/12/2003 18:00:03, Serialize by Router on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/12/2003 18:00:05, Serialize complete at 03/12/2003 18:00:05 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) X-Virus-Scanned: by amavisd-new Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hi all, "Discovery and Initial Handshake Phase" text in the protocol draft: There can be multiple PAAs on the link. The result does not depend on which PAA PaC chooses. By default PaC chooses the PAA that sent the first response. IMHO, there is a need to clarify here. Let's assume that we have multiple PAAs separated from EPs: PaC1a --+ +- PAA1 | | PaC1b --+-- EP1 -----+- router -----+ | | PaC2 ----- EP2 --- -+ | | | PaC2 ----- EP3 -----+- router -----+----- (AAA) | +- PAA2 I mean if: - PAA1 provisions EP1 - PAA2 provisions EP2 and EP3 then it should be this way: - PAA1 authenticates Pac1a and PaC1b - PAA2 authenticates PaC2 and PaC3 it should be stated that the PAA which authenticates the PaC should be the same as the one which provisions the corresponding EP(s). thanks, yacine From pana-request@research.telcordia.com Wed Mar 12 13:36:49 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA15503 for ; Wed, 12 Mar 2003 13:36:49 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CIangq028639; Wed, 12 Mar 2003 13:36:49 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 13:36:49 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: multiples PAAs Date: Wed, 12 Mar 2003 12:32:02 -0600 Message-ID: <697DAA22C5004B4596E033803A7CEF4401753150@daebe007.americas.nokia.com> Thread-Topic: multiples PAAs Thread-Index: AcLouYC9niaIMap1QU2OrIB5AaBx2gAC/uZw From: To: , X-OriginalArrivalTime: 12 Mar 2003 18:32:03.0898 (UTC) FILETIME=[ADA099A0:01C2E8C5] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <9ATXqD.A.X_G.A53b-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id NAA15503 I agree with what you are saying here. I guess we did not consider the deployment model where different PAAs are responsible for different EPs. Do you foresee such deployments? -Basavaraj > > Hi all, > > "Discovery and Initial Handshake Phase" text in the protocol draft: > There can be multiple PAAs on the link. The result does > not depend > on which PAA PaC chooses. By default PaC chooses the PAA that sent > the first response. > > IMHO, there is a need to clarify here. Let's assume that we have > multiple PAAs separated from EPs: > > PaC1a --+ +- PAA1 > | | > PaC1b --+-- EP1 -----+- router -----+ > | | > PaC2 ----- EP2 --- -+ | > | | > PaC2 ----- EP3 -----+- router -----+----- (AAA) > | > +- PAA2 > > I mean if: > - PAA1 provisions EP1 > - PAA2 provisions EP2 and EP3 > then it should be this way: > - PAA1 authenticates Pac1a and PaC1b > - PAA2 authenticates PaC2 and PaC3 > > it should be stated that the PAA which authenticates the PaC > should be > the same as the one which provisions the corresponding EP(s). > > thanks, > yacine > > From pana-request@research.telcordia.com Wed Mar 12 14:35:45 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id OAA17690 for ; Wed, 12 Mar 2003 14:35:45 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CJZJHs003199; Wed, 12 Mar 2003 14:35:19 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 14:35:19 -0500 (EST) Old-Return-Path: x-mimeole: Produced By Microsoft Exchange V6.0.6249.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: 7bit Subject: RE: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] Date: Wed, 12 Mar 2003 11:34:47 -0800 Message-ID: <416B5AF360DED54088DAD3CA8BFBEA6E0134A3ED@TNEXVS02.tahoenetworks.com> Thread-Topic: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] Thread-Index: AcLouADiHkWMeZrSS66l9bnl/fcBEgAE6B/A From: "Mohan Parthasarathy" To: "Yoshihiro Ohba" Cc: , , X-OriginalArrivalTime: 12 Mar 2003 19:34:48.0657 (UTC) FILETIME=[71993C10:01C2E8CE] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit > > Hi Mohan, > > Thanks for reviewing the draft and sorry for my delayed response. > Please see my comments in line. > > On Fri, Mar 07, 2003 at 09:25:17AM -0800, Mohan Parthasarathy wrote: > > > > The document looks good except for these minor issues. > > > > 1) In section 2, Problem statement > > > > "Access networks usually require clients to go through > an authentication and > > authorization process unless physical security is > used as a substitute". > > > > In section 3.1, PANA with physical layer security, > > > > "In the networks where a certain degree of security > is provided at physical > > layer, authenticating the client is still essential > since physical layer > > does not provide information on the client..." > > > > It is not a major thing. But it was a bit confusing to read. > > I see. Perhaps we can remove "unless physical security is used as a > substitute" from the sentense in section 2. Ok. > > > > > 2) In section (2), > > > > Initial client authentication needs > > to be bound to subsequent traffic to prevent > spoofing and hijacking > > of data packets. > > > > What do you mean by hijacking of data packets ? > > It means service theft. So how about the following? > > Initial client authentication needs to be bound to subsequent > traffic to prevent spoofing of data packets and resulting service > theft. > Sounds good. > > > > > > 3) In section (2), following 2 sentences are still confusing me. > > > > PANA is only responsible for carrying EAP and > it should not have > > to deal with the keying material.Once the > keying material is present > > > > You talked about the need for generating key > material a few lines back. > > Here we are saying PANA will not do it. I think you > may want to say, that > > EAP will be used to generate the keying materail > (refer that EAP-keying draft). > > I think the following already mentions the use of EAP to generate the > keying material: > > "The task of generating and distributing such keying > material can be > accomplished by various authentication methods carried by EAP." > > Isn't it enough? > I think it is sufficient. > > > > The mechanisms that are used to turn keying > material produced by > > the initial authentication method into > link-layer or network-layer > > ciphers are outside the scope of PANA. > > > > Is it outside the scope PANA or PANA WG ? The next > question someone will ask > > is "how does PANA prevent service theft" ? > > According to the current charter, defining key distribution, key > agreement or key derivation protocols is out of the scope of PANA. On > the other hand, the text talks about key derivation mechanisms, not > key derivation protocols, and the mechanisms may be in the > sope of PANA... > I am confused. I thought the above text talks about how to use the keys derived from the initial authentication in further establishing the SA. It says that it is outside the scope of PANA. In my understanding, key derivation = deriving keys at the end of authentication from EAP + methods (e.g. EAP keying draft) key distribution = Distribute the above derived keys to EP (PANA will just specify which protocol to use) key agreement = How to establish an SA between PaC and PAA using the above keys ? If we can clearly specify what is in scope or not, it would be useful. > What do others think? > I will try to have a slide as part of my presentation on this topic so that we can get clarified at the meeting. > > > > 4) In section (3.3), towards the end > > > > A solution like PANA at the network layer may > be adequate if it can > > specify appropriate authentication methods that > can derive and distribute > > keys for authentication, integrity and > confidentiality of data traffic > > either at the link or at the network layer. > > > > Again it is not clear what PANA is doing here. And > confidentiality can be removed > > i think as per the last ietf meeting. > > I'm not sure which part is not clear in the above text. Could you > elaborate or provide suggested text? > The text in itself is fine. But, it goes back to the same question as to whether PANA will provide per-packet integrity, confidentiality ? > > > > 5) In section 3.6, Limited Free Access, > > > > On the other hand, access to further services > or sites using such local > > networks requires authentication and > authorization. If users want such > > services, the access network can detect that > attempt and initiate > > authentication. This also allows the network > to initiate the > > authentication whenever appropriate. > > > > I think the last sentence can be modified to "This > also allows the network to > > initiate the authentication to authenticate the > client whenever appropriate". > > You may ignore this if it is redundant. But when i > read it first time, it was > > a bit confusing. > > OK. > > Thanks, > Yoshihiro Ohba -mohan From pana-request@research.telcordia.com Wed Mar 12 16:54:19 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA24927 for ; Wed, 12 Mar 2003 16:54:19 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CLrb8r014171; Wed, 12 Mar 2003 16:53:37 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 16:53:37 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: PANA and handover Date: Wed, 12 Mar 2003 15:49:22 -0600 Message-ID: <697DAA22C5004B4596E033803A7CEF44013EFAB4@daebe007.americas.nokia.com> Thread-Topic: PANA and handover Thread-Index: AcLn68KylyzoFmtBSWuAu3brpdNV2AA9FX4g From: To: , X-OriginalArrivalTime: 12 Mar 2003 21:49:22.0748 (UTC) FILETIME=[3E21BFC0:01C2E8E1] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id QAA24927 Hello, While this optimization helps in re-establishing the session fairly quickly, this is a feature that is not immedialtely required. This is the first sign of feature-creep into the protocol. I think the critical thing for this WG to do now is to get a working solution out ASAP. And after that we could look at other things that would be nice to have in the protocol. -Basavaraj > > Hi, > > If a PaC do a handover and change of AP (e.G. in case of 802.11b) > it could change of PAA and EP. In such a case the new PAA will > try to authenticate him whereas it has already been authenticated > to the previous PAA. MAybe it could be a benefit to add the abality > to the PaC to inform the new PAA of the previous PAA. As such the > new PAA could retrieve information from previous PAA without > reauthenticate the PaC. > > julien.bournelle@int-evry.fr > > From pana-request@research.telcordia.com Wed Mar 12 17:53:48 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA27161 for ; Wed, 12 Mar 2003 17:53:48 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CMrdpR019008; Wed, 12 Mar 2003 17:53:39 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 17:53:39 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 14:53:17 -0800 Subject: Re: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt[Correction] From: Alper Yegin To: Mohan Parthasarathy , Yoshihiro Ohba CC: , Message-ID: In-Reply-To: <416B5AF360DED54088DAD3CA8BFBEA6E0134A3ED@TNEXVS02.tahoenetworks.com> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit >>> The mechanisms that are used to turn keying >> material produced by >>> the initial authentication method into >> link-layer or network-layer >>> ciphers are outside the scope of PANA. >>> >>> Is it outside the scope PANA or PANA WG ? The next >> question someone will ask >>> is "how does PANA prevent service theft" ? >> >> According to the current charter, defining key distribution, key >> agreement or key derivation protocols is out of the scope of PANA. On >> the other hand, the text talks about key derivation mechanisms, not >> key derivation protocols, and the mechanisms may be in the >> sope of PANA... >> > I am confused. I thought the above text talks about how to use the > keys derived from the initial authentication in further establishing > the SA. It says that it is outside the scope of PANA. In my > understanding, > > key derivation = deriving keys at the end of authentication from EAP + > methods (e.g. EAP keying draft) PANA protocol carries EAP, hence whatever EAP and EAP methods provide is inherently available to the users of the PANA protocol. What PANA protocol does not do is , for example, defininig AVPs etc to specifically carry keying material between PaC and PAA. > > key distribution = Distribute the above derived keys to EP (PANA will just > specify which protocol to use) This is outside the scope of "PANA protocol". PANA WG's task is to identify at least one such protocol that takes care of the required PAA-EP communicaton. > > key agreement = How to establish an SA between PaC and PAA using the above > keys ? If the EAP method carried over PANA generates some keying material, this material is used to define a "PANA SA". This is a simple SA that binds the device ID to some cryptographic key from PAA and PaC's perspective. This SA is created at the end of the successful PANA exchange. This is not the same SA that EPs need to perform access control, like using L2 ciphers or IPsec. PANA SA is used as input to some other mechanisms, like IKE, to produce the desired SA, like IPsec SA. Turning PANA SA into access control SA is not part of the "PANA protocol". I'm not sure if there is any protocol work here, but definitely some guideline doc (informational rfc) would be useful. Should PANA WG produce this document? This is an open question, comments welcome..... > > If we can clearly specify what is in scope or not, it would be useful. > >> What do others think? >> > I will try to have a slide as part of my presentation on this topic so that > we can get clarified at the meeting. Thank you. > >>> >>> 4) In section (3.3), towards the end >>> >>> A solution like PANA at the network layer may >> be adequate if it can >>> specify appropriate authentication methods that >> can derive and distribute >>> keys for authentication, integrity and >> confidentiality of data traffic >>> either at the link or at the network layer. >>> >>> Again it is not clear what PANA is doing here. And >> confidentiality can be removed >>> i think as per the last ietf meeting. >> >> I'm not sure which part is not clear in the above text. Could you >> elaborate or provide suggested text? >> > The text in itself is fine. But, it goes back to the same question as > to whether PANA will provide per-packet integrity, confidentiality ? PANA protocol stops where it produces PANA SA. Turning PANA SA into access control SA for L2 or L3 needs some guidelines, in general. Should PANA WG do this? Once you have the access control SA, you go ahead and use it with L2 ciphers, or IPsec... alper From pana-request@research.telcordia.com Wed Mar 12 17:58:49 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA27350 for ; Wed, 12 Mar 2003 17:58:49 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CMx1kg019298; Wed, 12 Mar 2003 17:59:01 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 17:59:01 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 14:58:25 -0800 Subject: Re: WG Last Call: draft-ietf-pana-usage-scenarios-04.txt From: Alper Yegin To: Gopal Dommety , , Message-ID: In-Reply-To: <4.3.2.7.2.20030311165922.01ebc3f8@mira-sjcm-3.cisco.com> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hi Gopal, Thank you for the review. In the requirements draft, this is what we have: In addition to carrying authentication information, PANA MUST also provides only a binary authorization to indicate whether the PaC is allowed to access full IP services on the network. Providing finer granularity authorization, such as negotiating QoS parameters, authorizing individual services (http vs. ssh), individual users sharing the same device, etc. is outside the scope of PANA. So, authentication and authorization goes hand-in-hand. Or, in other words, the network is authenticating the client to authorizing it for network access. We can make this more clear in the usage scenarios draft. So far we have been keeping the scope limited to "network access service". Do you mean PANA could be used as a generic service authorization protocol, that can be used with anything? alper On 3/11/03 5:13 PM, "Gopal Dommety" wrote: > Hello All: > > I quickly went through the draft. My personal opinion is that it would be > good to expand the scope to include Authorization (of services etc). > > This draft seems to indicate that PANA is a protocol for Authentication. > It is not clear to me where we stand on authorization. There have been > occasional > references to authorization (that makes me think the authorization is in > the scope). For example: > > > 3.6. Limited Free Access > > "Certain networks might allow clients to access a limited topology without > any explicit authentication and authorization" and seems to indicate that > pana will be used to do authorization. > > 3.2. PANA with Link-Layer Security > > "But it (the existing gsm/cdma networks) does not necessarily provide > authorization at the network- layer which can be done by authenticating the > client to an ISP. So this still necessitates another layer of > authentication. It should be noted that this second authentication takes > place over a secure channel" > > > My personal opinion is that it would be good to expand the scope to include > Authorization (of services etc). Let me know if you need me to articulate > it better or contribute. > > > Thanks > Gopal > > From pana-request@research.telcordia.com Wed Mar 12 18:04:33 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA27646 for ; Wed, 12 Mar 2003 18:04:33 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2CN4rt9019666; Wed, 12 Mar 2003 18:04:53 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 18:04:53 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 15:04:47 -0800 Subject: Re: PANA protocol specification version 00 here From: Alper Yegin To: Julien Bournelle CC: Message-ID: In-Reply-To: <20030311133352.GQ35790@ipv6-5.int-evry.fr> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit On 3/11/03 5:33 AM, "Julien Bournelle" wrote: >> >> Please read the draft and provide comments before the IETF meeting. >> The solution discussions at the meeting will be centered around this draft, >> hence it is part of the mandatory reading. > > Hi, > > I've just read the draft and I just wanted to know > why the PaC doesn't have any way to "authenticate" the > PAA ?. > > Aren't we vulnerable to a MiTM if it can't be sure > to whom is giving authentication information ? This is a matter of picking the right EAP authentication method. PANA carries any EAP method, hence does not impose any limitations here. Choice of EAP method is an operational decision. Depending on the environment PaC and PAAs are operating, appropriate authentication method should be used. alper > > thanks > > julien.bournelle@int-evry.fr > > From pana-request@research.telcordia.com Wed Mar 12 20:50:18 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA03449 for ; Wed, 12 Mar 2003 20:50:18 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2D1narU028627; Wed, 12 Mar 2003 20:49:36 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 20:49:36 -0500 (EST) Old-Return-Path: x-mimeole: Produced By Microsoft Exchange V6.0.6249.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Date: Wed, 12 Mar 2003 17:49:13 -0800 Message-ID: <416B5AF360DED54088DAD3CA8BFBEA6E0134A3EE@TNEXVS02.tahoenetworks.com> Thread-Topic: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Thread-Index: AcLo6jpCAYaS/tKQQT6QbQ78BfwQQgAB+5hg From: "Mohan Parthasarathy" To: "Alper Yegin" , "Yoshihiro Ohba" Cc: , X-OriginalArrivalTime: 13 Mar 2003 01:49:13.0451 (UTC) FILETIME=[BFA8C3B0:01C2E902] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id UAA03449 > > >>> The mechanisms that are used to turn keying > >> material produced by > >>> the initial authentication method into > >> link-layer or network-layer > >>> ciphers are outside the scope of PANA. > >>> > >>> Is it outside the scope PANA or PANA WG ? The next > >> question someone will ask > >>> is "how does PANA prevent service theft" ? > >> > >> According to the current charter, defining key distribution, key > >> agreement or key derivation protocols is out of the scope > of PANA. On > >> the other hand, the text talks about key derivation mechanisms, not > >> key derivation protocols, and the mechanisms may be in the > >> sope of PANA... > >> > > I am confused. I thought the above text talks about how to use the > > keys derived from the initial authentication in further establishing > > the SA. It says that it is outside the scope of PANA. In my > > understanding, > > > > key derivation = deriving keys at the end of authentication > from EAP + > > methods (e.g. EAP keying draft) > > PANA protocol carries EAP, hence whatever EAP and EAP methods > provide is > inherently available to the users of the PANA protocol. What > PANA protocol > does not do is , for example, defininig AVPs etc to specifically carry > keying material between PaC and PAA. > > > > > key distribution = Distribute the above derived keys to EP > (PANA will just > > specify which protocol to use) > > This is outside the scope of "PANA protocol". PANA WG's task > is to identify > at least one such protocol that takes care of the required PAA-EP > communicaton. > Ok, wrong words. Yes, identify the protocol to use. > > > > key agreement = How to establish an SA between PaC and PAA > using the above > > keys ? > > If the EAP method carried over PANA generates some keying > material, this > material is used to define a "PANA SA". This is a simple SA > that binds the > device ID to some cryptographic key from PAA and PaC's perspective. > This SA is created at the end of the successful PANA exchange. > I am getting confused with the terminology here. At the end of PANA, assume you are able to derive some key that is known only to PAA and PaC (e.g. Master session key mentioned in EAP keying draft). Are you going to do something further with this key to derive a PANA SA ? For example, PPP uses ECP (rfc1968) to negotiate algorithms etc. > This is not the same SA that EPs need to perform access > control, like using > L2 ciphers or IPsec. PANA SA is used as input to some other > mechanisms, like > IKE, to produce the desired SA, like IPsec SA. Turning PANA > SA into access > control SA is not part of the "PANA protocol". I'm not sure > if there is any > protocol work here, but definitely some guideline doc > (informational rfc) > would be useful. Should PANA WG produce this document? This is an open > question, comments welcome..... > I think this WG should produce such a document so that PANA can be used/deployed on shared links. Don't we need an interoperable way of establishing this SA ? > > > > > If we can clearly specify what is in scope or not, it would > be useful. > > > >> What do others think? > >> > > I will try to have a slide as part of my presentation on > this topic so that > > we can get clarified at the meeting. > > Thank you. > > > > >>> > >>> 4) In section (3.3), towards the end > >>> > >>> A solution like PANA at the network layer may > >> be adequate if it can > >>> specify appropriate authentication methods that > >> can derive and distribute > >>> keys for authentication, integrity and > >> confidentiality of data traffic > >>> either at the link or at the network layer. > >>> > >>> Again it is not clear what PANA is doing here. And > >> confidentiality can be removed > >>> i think as per the last ietf meeting. > >> > >> I'm not sure which part is not clear in the above text. Could you > >> elaborate or provide suggested text? > >> > > The text in itself is fine. But, it goes back to the same > question as > > to whether PANA will provide per-packet integrity, confidentiality ? > > PANA protocol stops where it produces PANA SA. > > Turning PANA SA into access control SA for L2 or L3 needs > some guidelines, > in general. Should PANA WG do this? > > Once you have the access control SA, you go ahead and use it with L2 > ciphers, or IPsec... > See above. > > alper > mohan > From pana-request@research.telcordia.com Wed Mar 12 22:33:40 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA05905 for ; Wed, 12 Mar 2003 22:33:39 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2D3Wkoa003004; Wed, 12 Mar 2003 22:32:46 -0500 (EST) Resent-Date: Wed, 12 Mar 2003 22:32:46 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 19:32:24 -0800 Subject: Re: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] From: Alper Yegin To: Mohan Parthasarathy , Yoshihiro Ohba CC: , Message-ID: In-Reply-To: <416B5AF360DED54088DAD3CA8BFBEA6E0134A3EE@TNEXVS02.tahoenetworks.com> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit >> If the EAP method carried over PANA generates some keying >> material, this >> material is used to define a "PANA SA". This is a simple SA >> that binds the >> device ID to some cryptographic key from PAA and PaC's perspective. >> This SA is created at the end of the successful PANA exchange. >> > I am getting confused with the terminology here. At the end of PANA, > assume you are able to derive some key that is known only to PAA > and PaC (e.g. Master session key mentioned in EAP keying draft). Yes. Here is how we defined PANA SA: PANA Security Association: The representation of the trust relation between the PaC and the PAA that is created at the end of the authentication phase (PH2). This security association includes the device identifier of the peer, and a shared key when available. > Are you going to do something further with this key to derive a PANA SA ? No, that's it. PANA SA can be established with that key. But if the network is going to use IPsec as the per-packet protection after PANA authentication, it needs IPsec SA. Somehow one needs to transform PANA SA to IPsec SA using IKE, etc. This transformation is not done by the PANA protocol. > For example, PPP uses ECP (rfc1968) to negotiate algorithms etc. Depending on the network, some L2 cipher negotiation can take place, and ciphering can be turned on. But these happen all after PANA authentication is ended, and there is a PANA SA. [assuming we are talking about enabling ciphering after PANA] PANA protocol helps these other mechanisms to bootstrap, but its job is complete as soon as it produces the PANA SA. makes sense? alper From pana-request@research.telcordia.com Thu Mar 13 02:03:12 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id CAA13709 for ; Thu, 13 Mar 2003 02:02:53 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2D71cMR012101; Thu, 13 Mar 2003 02:01:38 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 02:01:38 -0500 (EST) Old-Return-Path: Date: Wed, 12 Mar 2003 23:01:06 -0800 Subject: Re: COPS-PR for PAA-EP interface From: Alper Yegin To: , pana Message-ID: In-Reply-To: <3E6C6E0D.5080808@alcatel.fr> Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hello Yacine, Thanks for the draft analizing COPS-PR. One question/comment: In the context of PANA, the access control information provisioned by the PAA to the EP consists are DI-based filters. Depending on the access technology, DIs might contain any of IP address, link-layer address, switch port number, etc. of a device. In some scenarios, some keying material will be passed along with the DI to the EPs. Would new data types necessary for this, or does COPS-PR already handle this? Thanks. alper On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" wrote: > hi folks, > > this proposal considers the applicability of existing COPS-PR protocol > for the PAA-EP communication: > http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt > > below is a summary of how COPS-PR meets the PAA-EP protocol > identified requirements. I'll do an update as soon as these requirements > are finalized. > > > --- security > the PAA-EP protocol needs to guaranty identity, confidentiality and > integrity > > [COPS]: provides message level security for authentication, replay > protection, and message integrity. COPS can make use of existing > protocols for security such as IPSEC or TLS to authenticate and secure > the channel between the PEP(EP) and the PDP(PAA). > > --- keep-alives > protocol used between PAA and EP should be able to detect inactive > peer within an appropiate time period and delete the related states. > > [COPS]: KA messages are sent with a time-period set by the PDP(PAA) > at session startup. > > --- event notification > architecture needs to allow PaC and PAA initiated authentication > > [COPS]: COPS-PR can also be used following the outsourcing (pull) model. > For example, in a very similar context, 3GPP does it this way for PCF to > control GGSN (Go interface). > > --- pull method > have a mechanism for a newly introduced EP to learn the policies > currently in effect on that access network. > > [COPS]: the initial configuration request/decision can do this. > > --- push method > PAA should be able to notify an EP for allowing/disallowing access > for a particular client. This should happen without EP sending a request > to the PAA. > > [COPS]: the successive configuration decisions do this. > > > thanks, > yacine > > > > > > > > From pana-request@research.telcordia.com Thu Mar 13 04:18:25 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA24754 for ; Thu, 13 Mar 2003 04:18:10 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2D9HExA017207; Thu, 13 Mar 2003 04:17:14 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 04:17:14 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F24@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Alper Yegin'" , Yacine.El_Mghazli@alcatel.fr, pana Subject: RE: COPS-PR for PAA-EP interface Date: Thu, 13 Mar 2003 10:17:03 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi all, i have briefly looked at the COPS-PR draft. for the interface between the paa and the ep(s) any protocol proposal published in the midcom group would just work fine. am i wrong with this observation? are the requirements in a pana environment different to those in the midcom group. if so then we should add them somewhere (e.g. requirements document). ciao hannes > -----Original Message----- > From: Alper Yegin [mailto:alper@docomolabs-usa.com] > Sent: Thursday, March 13, 2003 8:01 AM > To: Yacine.El_Mghazli@alcatel.fr; pana > Subject: Re: COPS-PR for PAA-EP interface > > > > Hello Yacine, > > Thanks for the draft analizing COPS-PR. One question/comment: > > In the context of PANA, the access control information > provisioned by > the PAA to the EP consists are DI-based filters. Depending on the > access technology, DIs might contain any of IP address, link-layer > address, switch port number, etc. of a device. > > In some scenarios, some keying material will be passed along > with the DI to > the EPs. Would new data types necessary for this, or does > COPS-PR already > handle this? > > Thanks. > > alper > > > > > On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" > wrote: > > > hi folks, > > > > this proposal considers the applicability of existing > COPS-PR protocol > > for the PAA-EP communication: > > http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt > > > > below is a summary of how COPS-PR meets the PAA-EP protocol > > identified requirements. I'll do an update as soon as these > requirements > > are finalized. > > > > > > --- security > > the PAA-EP protocol needs to guaranty identity, confidentiality and > > integrity > > > > [COPS]: provides message level security for authentication, replay > > protection, and message integrity. COPS can make use of existing > > protocols for security such as IPSEC or TLS to authenticate > and secure > > the channel between the PEP(EP) and the PDP(PAA). > > > > --- keep-alives > > protocol used between PAA and EP should be able to detect inactive > > peer within an appropiate time period and delete the related states. > > > > [COPS]: KA messages are sent with a time-period set by the PDP(PAA) > > at session startup. > > > > --- event notification > > architecture needs to allow PaC and PAA initiated authentication > > > > [COPS]: COPS-PR can also be used following the outsourcing > (pull) model. > > For example, in a very similar context, 3GPP does it this > way for PCF to > > control GGSN (Go interface). > > > > --- pull method > > have a mechanism for a newly introduced EP to learn the policies > > currently in effect on that access network. > > > > [COPS]: the initial configuration request/decision can do this. > > > > --- push method > > PAA should be able to notify an EP for allowing/disallowing access > > for a particular client. This should happen without EP > sending a request > > to the PAA. > > > > [COPS]: the successive configuration decisions do this. > > > > > > thanks, > > yacine > > > > > > > > > > > > > > > > > From pana-request@research.telcordia.com Thu Mar 13 04:37:18 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA25239 for ; Thu, 13 Mar 2003 04:37:18 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2D9bRAl018183; Thu, 13 Mar 2003 04:37:27 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 04:37:27 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F25@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Yacine.El_Mghazli@alcatel.fr'" , pana Subject: RE: multiples PAAs Date: Thu, 13 Mar 2003 10:37:17 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi yacine, you raised an interesting issue. we initially wanted to include some text about working assumptions to the draft but we removed it since it is covered in the text (somewhere). you are addressing an assumption made about the topology: ---------------- Topology Knowledge Whenever the EP and the PAA are not physically co-located there is a possible danger that the data traffic passes the wrong device (i.e. the device where the Device Identifier is installed). Hence it is assumed that a device in the access network is aware of the topology and is able to trigger Device Identifier installation at the correct EP. Based on this topology constraint the PANA protocol is executed between two nodes which are on the same link. Installing packet filters on devices which are somewhere along the path is therefore not possible with the PANA protocol itself because of this topology problem. Other working groups such as the NSIS wg try to address the problem of installing state at devices along the path in a more generic fashion. ---------------- hence the paa(s) must be able - to determine at which ep the data traffic enters - to signaling the necessary information to this device (if something has to be installed there). you might want to take a look at http://www.ietf.org/internet-drafts/draft-tschofenig-nsis-casp-midcom-01.txt to see what happens if you want to signal packet filter information to devices in the generic case. to make pana less complex some assumptions had to be made. once you signal packet filter information to devices which are one AS away then you experience problems due to the routing assymmetry (i.e. you have to signal unidirectional packet filter information). do you think that we should add some working assumptions to the document? should we somewhere capture your issue in a draft (if yes, which one)? ciao hannes > Hi all, > > "Discovery and Initial Handshake Phase" text in the protocol draft: > There can be multiple PAAs on the link. The result does > not depend > on which PAA PaC chooses. By default PaC chooses the PAA that sent > the first response. > > IMHO, there is a need to clarify here. Let's assume that we have > multiple PAAs separated from EPs: > > PaC1a --+ +- PAA1 > | | > PaC1b --+-- EP1 -----+- router -----+ > | | > PaC2 ----- EP2 --- -+ | > | | > PaC2 ----- EP3 -----+- router -----+----- (AAA) > | > +- PAA2 > > I mean if: > - PAA1 provisions EP1 > - PAA2 provisions EP2 and EP3 > then it should be this way: > - PAA1 authenticates Pac1a and PaC1b > - PAA2 authenticates PaC2 and PaC3 > > it should be stated that the PAA which authenticates the PaC > should be > the same as the one which provisions the corresponding EP(s). > > thanks, > yacine > From pana-request@research.telcordia.com Thu Mar 13 05:05:39 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA25642 for ; Thu, 13 Mar 2003 05:05:39 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DA5jGf019340; Thu, 13 Mar 2003 05:05:45 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 05:05:45 -0500 (EST) Old-Return-Path: Message-ID: <3E7057E9.4090704@alcatel.fr> Date: Thu, 13 Mar 2003 11:05:29 +0100 From: Yacine.El_Mghazli@alcatel.fr Organization: Alcatel R&I User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: fr-fr MIME-Version: 1.0 To: Alper Yegin CC: pana Subject: Re: COPS-PR for PAA-EP interface References: X-MIMETrack: Itemize by SMTP Server on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 11:05:29, Serialize by Router on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 11:05:30, Serialize complete at 03/13/2003 11:05:30 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) X-Virus-Scanned: by amavisd-new Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hi Alper, Alper Yegin wrote: > Hello Yacine, > > Thanks for the draft analizing COPS-PR. One question/comment: > > In the context of PANA, the access control information provisioned by > the PAA to the EP consists are DI-based filters. Depending on the > access technology, DIs might contain any of IP address, link-layer > address, switch port number, etc. of a device. btw, I did not notice any list the different DI objects supported/carried by the PANA protocol in the recent draft. does the working group plan to establish a list ? > In some scenarios, some keying material will be passed along with the DI to > the EPs. Would new data types necessary for this, or does COPS-PR already > handle this? the IPSP wg has designed an IPSec PIB for that, see: http://www.ietf.org/internet-drafts/draft-ietf-ipsp-ipsecpib-07.txt No new data types needed. > > Thanks. > > alper thank you, yacine > > > > > On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" > wrote: > > >>hi folks, >> >>this proposal considers the applicability of existing COPS-PR protocol >>for the PAA-EP communication: >>http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt >> >>below is a summary of how COPS-PR meets the PAA-EP protocol >>identified requirements. I'll do an update as soon as these requirements >>are finalized. >> >> >>--- security >>the PAA-EP protocol needs to guaranty identity, confidentiality and >>integrity >> >>[COPS]: provides message level security for authentication, replay >>protection, and message integrity. COPS can make use of existing >>protocols for security such as IPSEC or TLS to authenticate and secure >>the channel between the PEP(EP) and the PDP(PAA). >> >>--- keep-alives >>protocol used between PAA and EP should be able to detect inactive >>peer within an appropiate time period and delete the related states. >> >>[COPS]: KA messages are sent with a time-period set by the PDP(PAA) >>at session startup. >> >>--- event notification >>architecture needs to allow PaC and PAA initiated authentication >> >>[COPS]: COPS-PR can also be used following the outsourcing (pull) model. >>For example, in a very similar context, 3GPP does it this way for PCF to >>control GGSN (Go interface). >> >>--- pull method >>have a mechanism for a newly introduced EP to learn the policies >>currently in effect on that access network. >> >>[COPS]: the initial configuration request/decision can do this. >> >>--- push method >>PAA should be able to notify an EP for allowing/disallowing access >>for a particular client. This should happen without EP sending a request >>to the PAA. >> >>[COPS]: the successive configuration decisions do this. >> >> >>thanks, >>yacine >> >> >> >> >> >> >> >> >> > > From pana-request@research.telcordia.com Thu Mar 13 05:18:59 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA25815 for ; Thu, 13 Mar 2003 05:18:59 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DAIZjS019898; Thu, 13 Mar 2003 05:18:35 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 05:18:35 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F2B@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Yacine.El_Mghazli@alcatel.fr'" , Alper Yegin Cc: pana Subject: RE: COPS-PR for PAA-EP interface Date: Thu, 13 Mar 2003 11:18:11 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: <_7smL.A.y2E.6rFc-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi please see my comments inline: > Hi Alper, > > Alper Yegin wrote: > > > Hello Yacine, > > > > Thanks for the draft analizing COPS-PR. One question/comment: > > > > In the context of PANA, the access control information > provisioned by > > the PAA to the EP consists are DI-based filters. Depending on the > > access technology, DIs might contain any of IP address, > link-layer > > address, switch port number, etc. of a device. > > > btw, I did not notice any list the different DI objects > supported/carried by the PANA protocol in the recent draft. > does the working group plan to establish a list ? we had a discussion on the different di objects. i personally think that the di objects should be exensible since i think it should be possible to support: a) more than one ip address b) network masks c) maybe even packet filters offering more granularity ad a) in case of multi-homing, ipv6 (link local, site local), ip aliasing, etc. ad b) for mobile networks ad c) to be able to restrict access control a little bit (only allow certain ports, protocols, destination, etc.) i am also not very happy about link layer addresses. but that's a separate story. > > > > In some scenarios, some keying material will be passed > along with the DI to > > the EPs. Would new data types necessary for this, or does > COPS-PR already > > handle this? i guess that this is not fully correct. the ep is a link layer device from the perspective of the pac. hence the pac would not terminate a ipsec tunnel at the ep - that would be done at the paa. > > > the IPSP wg has designed an IPSec PIB for that, see: > http://www.ietf.org/internet-drafts/draft-ietf-ipsp-ipsecpib-07.txt thanks for this information. if an ipsec sa has to be established locally only (at the paa) then "only" an api (e.g. pf_key) or a cli is required. ciao hannes > > No new data types needed. > > > > > Thanks. > > > > alper > > > thank you, > yacine > > > > > > > > > > > > On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" > > wrote: > > > > > >>hi folks, > >> > >>this proposal considers the applicability of existing > COPS-PR protocol > >>for the PAA-EP communication: > >>http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt > >> > >>below is a summary of how COPS-PR meets the PAA-EP protocol > >>identified requirements. I'll do an update as soon as these > requirements > >>are finalized. > >> > >> > >>--- security > >>the PAA-EP protocol needs to guaranty identity, confidentiality and > >>integrity > >> > >>[COPS]: provides message level security for authentication, replay > >>protection, and message integrity. COPS can make use of existing > >>protocols for security such as IPSEC or TLS to authenticate > and secure > >>the channel between the PEP(EP) and the PDP(PAA). > >> > >>--- keep-alives > >>protocol used between PAA and EP should be able to detect inactive > >>peer within an appropiate time period and delete the related states. > >> > >>[COPS]: KA messages are sent with a time-period set by the PDP(PAA) > >>at session startup. > >> > >>--- event notification > >>architecture needs to allow PaC and PAA initiated authentication > >> > >>[COPS]: COPS-PR can also be used following the outsourcing > (pull) model. > >>For example, in a very similar context, 3GPP does it this > way for PCF to > >>control GGSN (Go interface). > >> > >>--- pull method > >>have a mechanism for a newly introduced EP to learn the policies > >>currently in effect on that access network. > >> > >>[COPS]: the initial configuration request/decision can do this. > >> > >>--- push method > >>PAA should be able to notify an EP for allowing/disallowing access > >>for a particular client. This should happen without EP > sending a request > >>to the PAA. > >> > >>[COPS]: the successive configuration decisions do this. > >> > >> > >>thanks, > >>yacine > >> > >> > >> > >> > >> > >> > >> > >> > >> > > > > > > From pana-request@research.telcordia.com Thu Mar 13 05:49:28 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA26260 for ; Thu, 13 Mar 2003 05:49:27 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DAmbFO023085; Thu, 13 Mar 2003 05:48:37 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 05:48:37 -0500 (EST) Old-Return-Path: Message-ID: <3E7061E7.60806@alcatel.fr> Date: Thu, 13 Mar 2003 11:48:07 +0100 From: Yacine.El_Mghazli@alcatel.fr Organization: Alcatel R&I User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: fr-fr MIME-Version: 1.0 To: Tschofenig Hannes Cc: Alper Yegin , pana Subject: Re: COPS-PR for PAA-EP interface References: <2A8DB02E3018D411901B009027FD3A3F03675F2B@mchp905a.mch.sbs.de> X-MIMETrack: Itemize by SMTP Server on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 11:48:07, Serialize by Router on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 11:48:08, Serialize complete at 03/13/2003 11:48:08 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) X-Virus-Scanned: by amavisd-new Resent-Message-ID: <3v4-dD.A.loF.EIGc-@thumper> Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hannes, Alper, >>>In some scenarios, some keying material will be passed >>>along with the DI to >>>the EPs. Would new data types necessary for this, or does >>>COPS-PR already handle this? >>> > > i guess that this is not fully correct. > the ep is a link layer device from the perspective of the pac. hence the pac > would not terminate a ipsec tunnel at the ep - that would be done at the > paa. > actually that was my understanding until I read in the draft-pana-req-05 *the new EP definition: "Per-packet enforcement includes per-packet filtering and may include cryptographic per-packet protection as well." *this statement in the PAA-EP section: "The chosen protocol MUST be capable of carrying DI and cryptographic keys for a given PaC from PAA to EP." ... consistent clarifications needed. thanks, yacine >> >>the IPSP wg has designed an IPSec PIB for that, see: >>http://www.ietf.org/internet-drafts/draft-ietf-ipsp-ipsecpib-07.txt >> > > thanks for this information. if an ipsec sa has to be established locally > only (at the paa) then "only" an api (e.g. pf_key) or a cli is required. > > ciao > hannes > > > >>No new data types needed. >> >> >>>Thanks. >>> >>>alper >>> >> >>thank you, >>yacine >> >> >> >>> >>> >>> >>>On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" >>> wrote: >>> >>> >>> >>>>hi folks, >>>> >>>>this proposal considers the applicability of existing >>>> >>COPS-PR protocol >> >>>>for the PAA-EP communication: >>>>http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt >>>> >>>>below is a summary of how COPS-PR meets the PAA-EP protocol >>>>identified requirements. I'll do an update as soon as these >>>> >>requirements >> >>>>are finalized. >>>> >>>> >>>>--- security >>>>the PAA-EP protocol needs to guaranty identity, confidentiality and >>>>integrity >>>> >>>>[COPS]: provides message level security for authentication, replay >>>>protection, and message integrity. COPS can make use of existing >>>>protocols for security such as IPSEC or TLS to authenticate >>>> >>and secure >> >>>>the channel between the PEP(EP) and the PDP(PAA). >>>> >>>>--- keep-alives >>>>protocol used between PAA and EP should be able to detect inactive >>>>peer within an appropiate time period and delete the related states. >>>> >>>>[COPS]: KA messages are sent with a time-period set by the PDP(PAA) >>>>at session startup. >>>> >>>>--- event notification >>>>architecture needs to allow PaC and PAA initiated authentication >>>> >>>>[COPS]: COPS-PR can also be used following the outsourcing >>>> >>(pull) model. >> >>>>For example, in a very similar context, 3GPP does it this >>>> >>way for PCF to >> >>>>control GGSN (Go interface). >>>> >>>>--- pull method >>>>have a mechanism for a newly introduced EP to learn the policies >>>>currently in effect on that access network. >>>> >>>>[COPS]: the initial configuration request/decision can do this. >>>> >>>>--- push method >>>>PAA should be able to notify an EP for allowing/disallowing access >>>>for a particular client. This should happen without EP >>>> >>sending a request >> >>>>to the PAA. >>>> >>>>[COPS]: the successive configuration decisions do this. >>>> >>>> >>>>thanks, >>>>yacine >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>> >> > From pana-request@research.telcordia.com Thu Mar 13 06:53:13 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA27581 for ; Thu, 13 Mar 2003 06:52:59 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DBqhwF000069; Thu, 13 Mar 2003 06:52:43 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 06:52:43 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F2E@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Yacine.El_Mghazli@alcatel.fr'" Cc: Alper Yegin , pana Subject: RE: COPS-PR for PAA-EP interface Date: Thu, 13 Mar 2003 12:52:20 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi yacine, thank you for pointing to this issue. i guess we clearly need to differentiate between link layer data protection and network layer data protection. hence the data protection terminated at the link layer device (ep) is clearly link layer specific and has nothing todo with ipsec. everyone is encouraged to read the drafts carefully to point to ambiguities in the texts. this helps to prevent confusions. ciao hannes > -----Original Message----- > From: Yacine.El_Mghazli@alcatel.fr > [mailto:Yacine.El_Mghazli@alcatel.fr] > Sent: Thursday, March 13, 2003 11:48 AM > To: Tschofenig Hannes > Cc: Alper Yegin; pana > Subject: Re: COPS-PR for PAA-EP interface > > > Hannes, Alper, > > >>>In some scenarios, some keying material will be passed > >>>along with the DI to > > >>>the EPs. Would new data types necessary for this, or does > >>>COPS-PR already handle this? > >>> > > > > i guess that this is not fully correct. > > the ep is a link layer device from the perspective of the > pac. hence the pac > > would not terminate a ipsec tunnel at the ep - that would > be done at the > > paa. > > > > > actually that was my understanding until I read in the > draft-pana-req-05 > > *the new EP definition: > "Per-packet enforcement includes per-packet filtering and > may include > cryptographic per-packet protection as well." > > *this statement in the PAA-EP section: > "The chosen protocol MUST be capable > of carrying DI and cryptographic keys for a given PaC from > PAA to EP." > > > ... consistent clarifications needed. > > thanks, > yacine > > > >> > >>the IPSP wg has designed an IPSec PIB for that, see: > >>http://www.ietf.org/internet-drafts/draft-ietf-ipsp-ipsecpib-07.txt > >> > > > > thanks for this information. if an ipsec sa has to be > established locally > > only (at the paa) then "only" an api (e.g. pf_key) or a cli > is required. > > > > ciao > > hannes > > > > > > > >>No new data types needed. > >> > >> > >>>Thanks. > >>> > >>>alper > >>> > >> > >>thank you, > >>yacine > >> > >> > >> > >>> > >>> > >>> > >>>On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" > >>> wrote: > >>> > >>> > >>> > >>>>hi folks, > >>>> > >>>>this proposal considers the applicability of existing > >>>> > >>COPS-PR protocol > >> > >>>>for the PAA-EP communication: > >>>>http://www.ietf.org/internet-drafts/draft-yacine-pana-cops > -ep-00.txt > >>>> > >>>>below is a summary of how COPS-PR meets the PAA-EP protocol > >>>>identified requirements. I'll do an update as soon as these > >>>> > >>requirements > >> > >>>>are finalized. > >>>> > >>>> > >>>>--- security > >>>>the PAA-EP protocol needs to guaranty identity, > confidentiality and > >>>>integrity > >>>> > >>>>[COPS]: provides message level security for authentication, replay > >>>>protection, and message integrity. COPS can make use of existing > >>>>protocols for security such as IPSEC or TLS to authenticate > >>>> > >>and secure > >> > >>>>the channel between the PEP(EP) and the PDP(PAA). > >>>> > >>>>--- keep-alives > >>>>protocol used between PAA and EP should be able to detect inactive > >>>>peer within an appropiate time period and delete the > related states. > >>>> > >>>>[COPS]: KA messages are sent with a time-period set by > the PDP(PAA) > >>>>at session startup. > >>>> > >>>>--- event notification > >>>>architecture needs to allow PaC and PAA initiated authentication > >>>> > >>>>[COPS]: COPS-PR can also be used following the outsourcing > >>>> > >>(pull) model. > >> > >>>>For example, in a very similar context, 3GPP does it this > >>>> > >>way for PCF to > >> > >>>>control GGSN (Go interface). > >>>> > >>>>--- pull method > >>>>have a mechanism for a newly introduced EP to learn the policies > >>>>currently in effect on that access network. > >>>> > >>>>[COPS]: the initial configuration request/decision can do this. > >>>> > >>>>--- push method > >>>>PAA should be able to notify an EP for allowing/disallowing access > >>>>for a particular client. This should happen without EP > >>>> > >>sending a request > >> > >>>>to the PAA. > >>>> > >>>>[COPS]: the successive configuration decisions do this. > >>>> > >>>> > >>>>thanks, > >>>>yacine > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>>> > >>> > >> > > > > From pana-request@research.telcordia.com Thu Mar 13 07:25:03 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA28087 for ; Thu, 13 Mar 2003 07:25:02 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DCPEtC001308; Thu, 13 Mar 2003 07:25:14 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 07:25:14 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Date: Thu, 13 Mar 2003 14:21:21 +0200 Message-ID: Thread-Topic: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Thread-Index: AcLo6jpCAYaS/tKQQT6QbQ78BfwQQgAB+5hgABn/yVA= From: To: , , Cc: , X-OriginalArrivalTime: 13 Mar 2003 12:21:21.0868 (UTC) FILETIME=[0EC1E8C0:01C2E95B] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id HAA28087 Mohan, At the moment PANA draft doesn't describe a key derivation mechanism for PANA SA from EAP session key. Maybe we need this? You could propose text for this. Especially if the PANA SA consist of two keys, one for each direction (PaC-->PAA and PAA-->PaC). - Dan > -----Original Message----- > From: ext Mohan Parthasarathy [mailto:mohanp@tahoenetworks.com] > Sent: 13 March, 2003 03:49 > To: Alper Yegin; Yoshihiro Ohba > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > Subject: RE: WG Last > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > > > >>> The mechanisms that are used to turn keying > > >> material produced by > > >>> the initial authentication method into > > >> link-layer or network-layer > > >>> ciphers are outside the scope of PANA. > > >>> > > >>> Is it outside the scope PANA or PANA WG ? The next > > >> question someone will ask > > >>> is "how does PANA prevent service theft" ? > > >> > > >> According to the current charter, defining key distribution, key > > >> agreement or key derivation protocols is out of the scope > > of PANA. On > > >> the other hand, the text talks about key derivation > mechanisms, not > > >> key derivation protocols, and the mechanisms may be in the > > >> sope of PANA... > > >> > > > I am confused. I thought the above text talks about how to use the > > > keys derived from the initial authentication in further > establishing > > > the SA. It says that it is outside the scope of PANA. In my > > > understanding, > > > > > > key derivation = deriving keys at the end of authentication > > from EAP + > > > methods (e.g. EAP keying draft) > > > > PANA protocol carries EAP, hence whatever EAP and EAP methods > > provide is > > inherently available to the users of the PANA protocol. What > > PANA protocol > > does not do is , for example, defininig AVPs etc to > specifically carry > > keying material between PaC and PAA. > > > > > > > > key distribution = Distribute the above derived keys to EP > > (PANA will just > > > specify which protocol to use) > > > > This is outside the scope of "PANA protocol". PANA WG's task > > is to identify > > at least one such protocol that takes care of the required PAA-EP > > communicaton. > > > Ok, wrong words. Yes, identify the protocol to use. > > > > > > > key agreement = How to establish an SA between PaC and PAA > > using the above > > > keys ? > > > > If the EAP method carried over PANA generates some keying > > material, this > > material is used to define a "PANA SA". This is a simple SA > > that binds the > > device ID to some cryptographic key from PAA and PaC's perspective. > > This SA is created at the end of the successful PANA exchange. > > > I am getting confused with the terminology here. At the end of PANA, > assume you are able to derive some key that is known only to PAA > and PaC (e.g. Master session key mentioned in EAP keying draft). > Are you going to do something further with this key to derive > a PANA SA ? > For example, PPP uses ECP (rfc1968) to negotiate algorithms etc. > > > This is not the same SA that EPs need to perform access > > control, like using > > L2 ciphers or IPsec. PANA SA is used as input to some other > > mechanisms, like > > IKE, to produce the desired SA, like IPsec SA. Turning PANA > > SA into access > > control SA is not part of the "PANA protocol". I'm not sure > > if there is any > > protocol work here, but definitely some guideline doc > > (informational rfc) > > would be useful. Should PANA WG produce this document? This > is an open > > question, comments welcome..... > > > I think this WG should produce such a document so that PANA can be > used/deployed on shared links. Don't we need an interoperable way of > establishing this SA ? > > > > > > > > > If we can clearly specify what is in scope or not, it would > > be useful. > > > > > >> What do others think? > > >> > > > I will try to have a slide as part of my presentation on > > this topic so that > > > we can get clarified at the meeting. > > > > Thank you. > > > > > > > >>> > > >>> 4) In section (3.3), towards the end > > >>> > > >>> A solution like PANA at the network layer may > > >> be adequate if it can > > >>> specify appropriate authentication methods that > > >> can derive and distribute > > >>> keys for authentication, integrity and > > >> confidentiality of data traffic > > >>> either at the link or at the network layer. > > >>> > > >>> Again it is not clear what PANA is doing here. And > > >> confidentiality can be removed > > >>> i think as per the last ietf meeting. > > >> > > >> I'm not sure which part is not clear in the above text. > Could you > > >> elaborate or provide suggested text? > > >> > > > The text in itself is fine. But, it goes back to the same > > question as > > > to whether PANA will provide per-packet integrity, > confidentiality ? > > > > PANA protocol stops where it produces PANA SA. > > > > Turning PANA SA into access control SA for L2 or L3 needs > > some guidelines, > > in general. Should PANA WG do this? > > > > Once you have the access control SA, you go ahead and use it with L2 > > ciphers, or IPsec... > > > See above. > > > > > alper > > > mohan > > > > > From pana-request@research.telcordia.com Thu Mar 13 07:42:20 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA28404 for ; Thu, 13 Mar 2003 07:42:18 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DCgZZd002306; Thu, 13 Mar 2003 07:42:35 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 07:42:35 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F32@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Dan.Forsberg@nokia.com'" , mohanp@tahoenetworks.com, alper@docomolabs-usa.com, yohba@tari.toshiba.com Cc: Basavaraj.Patil@nokia.com, pana@research.telcordia.com Subject: RE: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correctio n] Date: Thu, 13 Mar 2003 13:42:02 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi dan, hi mohan. if we need a key derivation procedure (assuming it is not done within the eap wg) then i would suggest to rely on something existing (instead of inventing something new). i am aware of the following key derivation procedures: a) "key derivation without a hierarchy" the key and some other parameters serve as an input to a prf. each prf produces one part of the derived key. the output of a prf is input to the next prf. every prf takes the key as input. this approach is for example used by KINK, by IKE, by Kerberos and by the secure session key generation proposal by Blumenthal [1]. b) "key derivation with a hierarchy" as a difference to the above-described procedure the output of each prf is not directly used as part of the derived key. instead it is again input to a function f. this function f also uses the key as second input. furthermore each function f takes the input of all previously computed prfs as an input. this approach is for example used by TLS/SSL and by PKCS #5. ciao hannes [1] Blumenthal, U.: "Secure Session Key Generation. Createing PRF from MAC Function", , (work in progress), July, 2002. > -----Original Message----- > From: Dan.Forsberg@nokia.com [mailto:Dan.Forsberg@nokia.com] > Sent: Thursday, March 13, 2003 1:21 PM > To: mohanp@tahoenetworks.com; alper@docomolabs-usa.com; > yohba@tari.toshiba.com > Cc: Basavaraj.Patil@nokia.com; pana@research.telcordia.com > Subject: RE: WG Last > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > Mohan, > > At the moment PANA draft doesn't describe a key derivation > mechanism for PANA SA from EAP session key. Maybe we need > this? You could propose text for this. Especially if the PANA > SA consist of two keys, one for each direction (PaC-->PAA and > PAA-->PaC). > > - Dan > > > -----Original Message----- > > From: ext Mohan Parthasarathy [mailto:mohanp@tahoenetworks.com] > > Sent: 13 March, 2003 03:49 > > To: Alper Yegin; Yoshihiro Ohba > > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > > Subject: RE: WG Last > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > > > > > > > > > >>> The mechanisms that are used to turn keying > > > >> material produced by > > > >>> the initial authentication method into > > > >> link-layer or network-layer > > > >>> ciphers are outside the scope of PANA. > > > >>> > > > >>> Is it outside the scope PANA or PANA WG ? The next > > > >> question someone will ask > > > >>> is "how does PANA prevent service theft" ? > > > >> > > > >> According to the current charter, defining key > distribution, key > > > >> agreement or key derivation protocols is out of the scope > > > of PANA. On > > > >> the other hand, the text talks about key derivation > > mechanisms, not > > > >> key derivation protocols, and the mechanisms may be in the > > > >> sope of PANA... > > > >> > > > > I am confused. I thought the above text talks about how > to use the > > > > keys derived from the initial authentication in further > > establishing > > > > the SA. It says that it is outside the scope of PANA. In my > > > > understanding, > > > > > > > > key derivation = deriving keys at the end of authentication > > > from EAP + > > > > methods (e.g. EAP keying draft) > > > > > > PANA protocol carries EAP, hence whatever EAP and EAP methods > > > provide is > > > inherently available to the users of the PANA protocol. What > > > PANA protocol > > > does not do is , for example, defininig AVPs etc to > > specifically carry > > > keying material between PaC and PAA. > > > > > > > > > > > key distribution = Distribute the above derived keys to EP > > > (PANA will just > > > > specify which protocol to use) > > > > > > This is outside the scope of "PANA protocol". PANA WG's task > > > is to identify > > > at least one such protocol that takes care of the required PAA-EP > > > communicaton. > > > > > Ok, wrong words. Yes, identify the protocol to use. > > > > > > > > > > key agreement = How to establish an SA between PaC and PAA > > > using the above > > > > keys ? > > > > > > If the EAP method carried over PANA generates some keying > > > material, this > > > material is used to define a "PANA SA". This is a simple SA > > > that binds the > > > device ID to some cryptographic key from PAA and PaC's > perspective. > > > This SA is created at the end of the successful PANA exchange. > > > > > I am getting confused with the terminology here. At the end of PANA, > > assume you are able to derive some key that is known only to PAA > > and PaC (e.g. Master session key mentioned in EAP keying draft). > > Are you going to do something further with this key to derive > > a PANA SA ? > > For example, PPP uses ECP (rfc1968) to negotiate algorithms etc. > > > > > This is not the same SA that EPs need to perform access > > > control, like using > > > L2 ciphers or IPsec. PANA SA is used as input to some other > > > mechanisms, like > > > IKE, to produce the desired SA, like IPsec SA. Turning PANA > > > SA into access > > > control SA is not part of the "PANA protocol". I'm not sure > > > if there is any > > > protocol work here, but definitely some guideline doc > > > (informational rfc) > > > would be useful. Should PANA WG produce this document? This > > is an open > > > question, comments welcome..... > > > > > I think this WG should produce such a document so that PANA can be > > used/deployed on shared links. Don't we need an interoperable way of > > establishing this SA ? > > > > > > > > > > > > > If we can clearly specify what is in scope or not, it would > > > be useful. > > > > > > > >> What do others think? > > > >> > > > > I will try to have a slide as part of my presentation on > > > this topic so that > > > > we can get clarified at the meeting. > > > > > > Thank you. > > > > > > > > > > >>> > > > >>> 4) In section (3.3), towards the end > > > >>> > > > >>> A solution like PANA at the network layer may > > > >> be adequate if it can > > > >>> specify appropriate authentication methods that > > > >> can derive and distribute > > > >>> keys for authentication, integrity and > > > >> confidentiality of data traffic > > > >>> either at the link or at the network layer. > > > >>> > > > >>> Again it is not clear what PANA is doing here. And > > > >> confidentiality can be removed > > > >>> i think as per the last ietf meeting. > > > >> > > > >> I'm not sure which part is not clear in the above text. > > Could you > > > >> elaborate or provide suggested text? > > > >> > > > > The text in itself is fine. But, it goes back to the same > > > question as > > > > to whether PANA will provide per-packet integrity, > > confidentiality ? > > > > > > PANA protocol stops where it produces PANA SA. > > > > > > Turning PANA SA into access control SA for L2 or L3 needs > > > some guidelines, > > > in general. Should PANA WG do this? > > > > > > Once you have the access control SA, you go ahead and use > it with L2 > > > ciphers, or IPsec... > > > > > See above. > > > > > > > > alper > > > > > mohan > > > > > > > > > > From pana-request@research.telcordia.com Thu Mar 13 07:56:45 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA28808 for ; Thu, 13 Mar 2003 07:56:44 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DCv65Q003252; Thu, 13 Mar 2003 07:57:06 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 07:57:06 -0500 (EST) Old-Return-Path: Message-ID: <3E707FCE.5030305@alcatel.fr> Date: Thu, 13 Mar 2003 13:55:42 +0100 From: Yacine.El_Mghazli@alcatel.fr Organization: Alcatel R&I User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: fr-fr MIME-Version: 1.0 To: Tschofenig Hannes Cc: "'Alper Yegin'" , pana Subject: Re: COPS-PR for PAA-EP interface References: <2A8DB02E3018D411901B009027FD3A3F03675F24@mchp905a.mch.sbs.de> X-MIMETrack: Itemize by SMTP Server on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 13:55:42, Serialize by Router on FRMAIL30/FR/ALCATEL(Release 5.0.9a |January 7, 2002) at 03/13/2003 13:55:45, Serialize complete at 03/13/2003 13:55:45 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii; format=flowed X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) X-Virus-Scanned: by amavisd-new Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 7bit Hannes, Tschofenig Hannes wrote: > hi all, > > i have briefly looked at the COPS-PR draft. > > for the interface between the paa and the ep(s) any protocol proposal > published in the midcom group would just work fine. am i wrong with > this observation? > > are the requirements in a pana environment different to those in the > midcom group. if so then we should add them somewhere (e.g. > requirements document). the technical requirements which "disqualified" COPS-PR as the midcom protocol are the following: * Multiple Agents operating on the same ruleset. * MIDCOM requires that the MIDCOM Agent establish the session. do we have such requirements in PANA that prevent us from taking advantage of the dynamic provisioning ability of COPS ? I guess no... moreover, I carefully red the PAA-EP requirements thread and, above the particularly dynamic context of PANA, it appears that we have already some PANA specific requirements which are directly adressed by COPS-PR. so yes I personnaly think that the working group should setup its own requirements for this interface... in the continuity of the discussions held on the ML and the work presented at atlanta. > > ciao > hannes thanks, yacine > > > >>-----Original Message----- >>From: Alper Yegin [mailto:alper@docomolabs-usa.com] >>Sent: Thursday, March 13, 2003 8:01 AM >>To: Yacine.El_Mghazli@alcatel.fr; pana >>Subject: Re: COPS-PR for PAA-EP interface >> >> >> >>Hello Yacine, >> >>Thanks for the draft analizing COPS-PR. One question/comment: >> >> In the context of PANA, the access control information >>provisioned by >> the PAA to the EP consists are DI-based filters. Depending on the >> access technology, DIs might contain any of IP address, link-layer >> address, switch port number, etc. of a device. >> >>In some scenarios, some keying material will be passed along >>with the DI to >>the EPs. Would new data types necessary for this, or does >>COPS-PR already >>handle this? >> >>Thanks. >> >>alper >> >> >> >> >>On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" >> wrote: >> >> >>>hi folks, >>> >>>this proposal considers the applicability of existing >>> >>COPS-PR protocol >> >>>for the PAA-EP communication: >>>http://www.ietf.org/internet-drafts/draft-yacine-pana-cops-ep-00.txt >>> >>>below is a summary of how COPS-PR meets the PAA-EP protocol >>>identified requirements. I'll do an update as soon as these >>> >>requirements >> >>>are finalized. >>> >>> >>>--- security >>>the PAA-EP protocol needs to guaranty identity, confidentiality and >>>integrity >>> >>>[COPS]: provides message level security for authentication, replay >>>protection, and message integrity. COPS can make use of existing >>>protocols for security such as IPSEC or TLS to authenticate >>> >>and secure >> >>>the channel between the PEP(EP) and the PDP(PAA). >>> >>>--- keep-alives >>>protocol used between PAA and EP should be able to detect inactive >>>peer within an appropiate time period and delete the related states. >>> >>>[COPS]: KA messages are sent with a time-period set by the PDP(PAA) >>>at session startup. >>> >>>--- event notification >>>architecture needs to allow PaC and PAA initiated authentication >>> >>>[COPS]: COPS-PR can also be used following the outsourcing >>> >>(pull) model. >> >>>For example, in a very similar context, 3GPP does it this >>> >>way for PCF to >> >>>control GGSN (Go interface). >>> >>>--- pull method >>>have a mechanism for a newly introduced EP to learn the policies >>>currently in effect on that access network. >>> >>>[COPS]: the initial configuration request/decision can do this. >>> >>>--- push method >>>PAA should be able to notify an EP for allowing/disallowing access >>>for a particular client. This should happen without EP >>> >>sending a request >> >>>to the PAA. >>> >>>[COPS]: the successive configuration decisions do this. >>> >>> >>>thanks, >>>yacine >>> >>> >>> >>> >>> >>> >>> >>> >>> > From pana-request@research.telcordia.com Thu Mar 13 07:58:42 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA28866 for ; Thu, 13 Mar 2003 07:58:42 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DCx2UO003322; Thu, 13 Mar 2003 07:59:02 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 07:59:02 -0500 (EST) Old-Return-Path: X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Date: Thu, 13 Mar 2003 14:55:01 +0200 Message-ID: Thread-Topic: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] Thread-Index: AcLpXgXlPxvxaybrQJK1+lP1I/njjAAAXNsA From: To: , , , Cc: , X-OriginalArrivalTime: 13 Mar 2003 12:55:01.0673 (UTC) FILETIME=[C2A7B190:01C2E95F] X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id HAA28866 Hi, Reading Alper's email I noticed that currently the pana draft assumes that the EAP session key is used as it is. So, unless this becomes a problem we can stick to that? - Dan > -----Original Message----- > From: ext Tschofenig Hannes [mailto:Hannes.Tschofenig@mchp.siemens.de] > Sent: 13 March, 2003 14:42 > To: Forsberg Dan (NRC/Helsinki); mohanp@tahoenetworks.com; > alper@docomolabs-usa.com; yohba@tari.toshiba.com > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > Subject: RE: WG Last > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > hi dan, > hi mohan. > > if we need a key derivation procedure (assuming it is not > done within the > eap wg) then i would suggest to rely on something existing (instead of > inventing something new). i am aware of the following key derivation > procedures: > > a) "key derivation without a hierarchy" > > the key and some other parameters serve as an input to a prf. each prf > produces one part of the derived key. the output of a prf is > input to the > next prf. every prf takes the key as input. > > this approach is for example used by KINK, by IKE, by > Kerberos and by the > secure session key generation proposal by Blumenthal [1]. > > b) "key derivation with a hierarchy" > > as a difference to the above-described procedure the output > of each prf is > not directly used as part of the derived key. instead it is > again input to a > function f. this function f also uses the key as second > input. furthermore > each function f takes the input of all previously computed > prfs as an input. > > this approach is for example used by TLS/SSL and by PKCS #5. > > ciao > hannes > > [1] Blumenthal, U.: "Secure Session Key Generation. > Createing PRF from > MAC Function", , (work in > progress), July, > 2002. > > > -----Original Message----- > > From: Dan.Forsberg@nokia.com [mailto:Dan.Forsberg@nokia.com] > > Sent: Thursday, March 13, 2003 1:21 PM > > To: mohanp@tahoenetworks.com; alper@docomolabs-usa.com; > > yohba@tari.toshiba.com > > Cc: Basavaraj.Patil@nokia.com; pana@research.telcordia.com > > Subject: RE: WG Last > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > Mohan, > > > > At the moment PANA draft doesn't describe a key derivation > > mechanism for PANA SA from EAP session key. Maybe we need > > this? You could propose text for this. Especially if the PANA > > SA consist of two keys, one for each direction (PaC-->PAA and > > PAA-->PaC). > > > > - Dan > > > > > -----Original Message----- > > > From: ext Mohan Parthasarathy [mailto:mohanp@tahoenetworks.com] > > > Sent: 13 March, 2003 03:49 > > > To: Alper Yegin; Yoshihiro Ohba > > > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > > > Subject: RE: WG Last > > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > > > > > > > > > > > > > > > >>> The mechanisms that are used to turn keying > > > > >> material produced by > > > > >>> the initial authentication method into > > > > >> link-layer or network-layer > > > > >>> ciphers are outside the scope of PANA. > > > > >>> > > > > >>> Is it outside the scope PANA or PANA WG ? The next > > > > >> question someone will ask > > > > >>> is "how does PANA prevent service theft" ? > > > > >> > > > > >> According to the current charter, defining key > > distribution, key > > > > >> agreement or key derivation protocols is out of the scope > > > > of PANA. On > > > > >> the other hand, the text talks about key derivation > > > mechanisms, not > > > > >> key derivation protocols, and the mechanisms may be in the > > > > >> sope of PANA... > > > > >> > > > > > I am confused. I thought the above text talks about how > > to use the > > > > > keys derived from the initial authentication in further > > > establishing > > > > > the SA. It says that it is outside the scope of PANA. In my > > > > > understanding, > > > > > > > > > > key derivation = deriving keys at the end of authentication > > > > from EAP + > > > > > methods (e.g. EAP keying draft) > > > > > > > > PANA protocol carries EAP, hence whatever EAP and EAP methods > > > > provide is > > > > inherently available to the users of the PANA protocol. What > > > > PANA protocol > > > > does not do is , for example, defininig AVPs etc to > > > specifically carry > > > > keying material between PaC and PAA. > > > > > > > > > > > > > > key distribution = Distribute the above derived keys to EP > > > > (PANA will just > > > > > specify which protocol to use) > > > > > > > > This is outside the scope of "PANA protocol". PANA WG's task > > > > is to identify > > > > at least one such protocol that takes care of the > required PAA-EP > > > > communicaton. > > > > > > > Ok, wrong words. Yes, identify the protocol to use. > > > > > > > > > > > > > key agreement = How to establish an SA between PaC and PAA > > > > using the above > > > > > keys ? > > > > > > > > If the EAP method carried over PANA generates some keying > > > > material, this > > > > material is used to define a "PANA SA". This is a simple SA > > > > that binds the > > > > device ID to some cryptographic key from PAA and PaC's > > perspective. > > > > This SA is created at the end of the successful PANA exchange. > > > > > > > I am getting confused with the terminology here. At the > end of PANA, > > > assume you are able to derive some key that is known only to PAA > > > and PaC (e.g. Master session key mentioned in EAP keying draft). > > > Are you going to do something further with this key to derive > > > a PANA SA ? > > > For example, PPP uses ECP (rfc1968) to negotiate algorithms etc. > > > > > > > This is not the same SA that EPs need to perform access > > > > control, like using > > > > L2 ciphers or IPsec. PANA SA is used as input to some other > > > > mechanisms, like > > > > IKE, to produce the desired SA, like IPsec SA. Turning PANA > > > > SA into access > > > > control SA is not part of the "PANA protocol". I'm not sure > > > > if there is any > > > > protocol work here, but definitely some guideline doc > > > > (informational rfc) > > > > would be useful. Should PANA WG produce this document? This > > > is an open > > > > question, comments welcome..... > > > > > > > I think this WG should produce such a document so that PANA can be > > > used/deployed on shared links. Don't we need an > interoperable way of > > > establishing this SA ? > > > > > > > > > > > > > > > > > If we can clearly specify what is in scope or not, it would > > > > be useful. > > > > > > > > > >> What do others think? > > > > >> > > > > > I will try to have a slide as part of my presentation on > > > > this topic so that > > > > > we can get clarified at the meeting. > > > > > > > > Thank you. > > > > > > > > > > > > > >>> > > > > >>> 4) In section (3.3), towards the end > > > > >>> > > > > >>> A solution like PANA at the network layer may > > > > >> be adequate if it can > > > > >>> specify appropriate authentication methods that > > > > >> can derive and distribute > > > > >>> keys for authentication, integrity and > > > > >> confidentiality of data traffic > > > > >>> either at the link or at the network layer. > > > > >>> > > > > >>> Again it is not clear what PANA is doing here. And > > > > >> confidentiality can be removed > > > > >>> i think as per the last ietf meeting. > > > > >> > > > > >> I'm not sure which part is not clear in the above text. > > > Could you > > > > >> elaborate or provide suggested text? > > > > >> > > > > > The text in itself is fine. But, it goes back to the same > > > > question as > > > > > to whether PANA will provide per-packet integrity, > > > confidentiality ? > > > > > > > > PANA protocol stops where it produces PANA SA. > > > > > > > > Turning PANA SA into access control SA for L2 or L3 needs > > > > some guidelines, > > > > in general. Should PANA WG do this? > > > > > > > > Once you have the access control SA, you go ahead and use > > it with L2 > > > > ciphers, or IPsec... > > > > > > > See above. > > > > > > > > > > > alper > > > > > > > mohan > > > > > > > > > > > > > > > > From pana-request@research.telcordia.com Thu Mar 13 08:09:48 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA29147 for ; Thu, 13 Mar 2003 08:09:47 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DDA6pJ003966; Thu, 13 Mar 2003 08:10:06 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 08:10:06 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F35@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Dan.Forsberg@nokia.com'" , mohanp@tahoenetworks.com, alper@docomolabs-usa.com, yohba@tari.toshiba.com Cc: Basavaraj.Patil@nokia.com, pana@research.telcordia.com Subject: RE: WG Last Call:draft-ietf-pana-usage-scenarios-04.txt[Correctio n] Date: Thu, 13 Mar 2003 14:09:34 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi dan > -----Original Message----- > From: Dan.Forsberg@nokia.com [mailto:Dan.Forsberg@nokia.com] > Sent: Thursday, March 13, 2003 1:55 PM > To: Tschofenig Hannes; mohanp@tahoenetworks.com; > alper@docomolabs-usa.com; yohba@tari.toshiba.com > Cc: Basavaraj.Patil@nokia.com; pana@research.telcordia.com > Subject: RE: WG Last > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > Hi, > > Reading Alper's email I noticed that currently the pana draft > assumes that the EAP session key is used as it is. So, unless > this becomes a problem we can stick to that? for the pana sa this might work. we still have to keep an eye on: - the requirements for different algorithms (they require a different key length typically) - a separate key needs to be derived for each direction. some further thoughts have to be spent if protection of data traffic is desired. additionally it might be interesting if someone thinks that confidentiality protection is required for the information exchanged between the pac <-> paa. this might be an interesting requirement. in this case further keys need to be derived. ciao hannes > > - Dan > > > -----Original Message----- > > From: ext Tschofenig Hannes > [mailto:Hannes.Tschofenig@mchp.siemens.de] > > Sent: 13 March, 2003 14:42 > > To: Forsberg Dan (NRC/Helsinki); mohanp@tahoenetworks.com; > > alper@docomolabs-usa.com; yohba@tari.toshiba.com > > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > > Subject: RE: WG Last > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > hi dan, > > hi mohan. > > > > if we need a key derivation procedure (assuming it is not > > done within the > > eap wg) then i would suggest to rely on something existing > (instead of > > inventing something new). i am aware of the following key derivation > > procedures: > > > > a) "key derivation without a hierarchy" > > > > the key and some other parameters serve as an input to a > prf. each prf > > produces one part of the derived key. the output of a prf is > > input to the > > next prf. every prf takes the key as input. > > > > this approach is for example used by KINK, by IKE, by > > Kerberos and by the > > secure session key generation proposal by Blumenthal [1]. > > > > b) "key derivation with a hierarchy" > > > > as a difference to the above-described procedure the output > > of each prf is > > not directly used as part of the derived key. instead it is > > again input to a > > function f. this function f also uses the key as second > > input. furthermore > > each function f takes the input of all previously computed > > prfs as an input. > > > > this approach is for example used by TLS/SSL and by PKCS #5. > > > > ciao > > hannes > > > > [1] Blumenthal, U.: "Secure Session Key Generation. > > Createing PRF from > > MAC Function", , (work in > > progress), July, > > 2002. > > > > > -----Original Message----- > > > From: Dan.Forsberg@nokia.com [mailto:Dan.Forsberg@nokia.com] > > > Sent: Thursday, March 13, 2003 1:21 PM > > > To: mohanp@tahoenetworks.com; alper@docomolabs-usa.com; > > > yohba@tari.toshiba.com > > > Cc: Basavaraj.Patil@nokia.com; pana@research.telcordia.com > > > Subject: RE: WG Last > > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > > > > Mohan, > > > > > > At the moment PANA draft doesn't describe a key derivation > > > mechanism for PANA SA from EAP session key. Maybe we need > > > this? You could propose text for this. Especially if the PANA > > > SA consist of two keys, one for each direction (PaC-->PAA and > > > PAA-->PaC). > > > > > > - Dan > > > > > > > -----Original Message----- > > > > From: ext Mohan Parthasarathy [mailto:mohanp@tahoenetworks.com] > > > > Sent: 13 March, 2003 03:49 > > > > To: Alper Yegin; Yoshihiro Ohba > > > > Cc: Patil Basavaraj (NET/Dallas); pana@research.telcordia.com > > > > Subject: RE: WG Last > > > > Call:draft-ietf-pana-usage-scenarios-04.txt[Correction] > > > > > > > > > > > > > > > > > > > > > > > > > > >>> The mechanisms that are used to turn keying > > > > > >> material produced by > > > > > >>> the initial authentication method into > > > > > >> link-layer or network-layer > > > > > >>> ciphers are outside the scope of PANA. > > > > > >>> > > > > > >>> Is it outside the scope PANA or PANA WG ? The next > > > > > >> question someone will ask > > > > > >>> is "how does PANA prevent service theft" ? > > > > > >> > > > > > >> According to the current charter, defining key > > > distribution, key > > > > > >> agreement or key derivation protocols is out of the scope > > > > > of PANA. On > > > > > >> the other hand, the text talks about key derivation > > > > mechanisms, not > > > > > >> key derivation protocols, and the mechanisms may be in the > > > > > >> sope of PANA... > > > > > >> > > > > > > I am confused. I thought the above text talks about how > > > to use the > > > > > > keys derived from the initial authentication in further > > > > establishing > > > > > > the SA. It says that it is outside the scope of PANA. In my > > > > > > understanding, > > > > > > > > > > > > key derivation = deriving keys at the end of authentication > > > > > from EAP + > > > > > > methods (e.g. EAP keying draft) > > > > > > > > > > PANA protocol carries EAP, hence whatever EAP and EAP methods > > > > > provide is > > > > > inherently available to the users of the PANA protocol. What > > > > > PANA protocol > > > > > does not do is , for example, defininig AVPs etc to > > > > specifically carry > > > > > keying material between PaC and PAA. > > > > > > > > > > > > > > > > > key distribution = Distribute the above derived keys to EP > > > > > (PANA will just > > > > > > specify which protocol to use) > > > > > > > > > > This is outside the scope of "PANA protocol". PANA WG's task > > > > > is to identify > > > > > at least one such protocol that takes care of the > > required PAA-EP > > > > > communicaton. > > > > > > > > > Ok, wrong words. Yes, identify the protocol to use. > > > > > > > > > > > > > > > > key agreement = How to establish an SA between PaC and PAA > > > > > using the above > > > > > > keys ? > > > > > > > > > > If the EAP method carried over PANA generates some keying > > > > > material, this > > > > > material is used to define a "PANA SA". This is a simple SA > > > > > that binds the > > > > > device ID to some cryptographic key from PAA and PaC's > > > perspective. > > > > > This SA is created at the end of the successful PANA exchange. > > > > > > > > > I am getting confused with the terminology here. At the > > end of PANA, > > > > assume you are able to derive some key that is known only to PAA > > > > and PaC (e.g. Master session key mentioned in EAP keying draft). > > > > Are you going to do something further with this key to derive > > > > a PANA SA ? > > > > For example, PPP uses ECP (rfc1968) to negotiate > algorithms etc. > > > > > > > > > This is not the same SA that EPs need to perform access > > > > > control, like using > > > > > L2 ciphers or IPsec. PANA SA is used as input to some other > > > > > mechanisms, like > > > > > IKE, to produce the desired SA, like IPsec SA. Turning PANA > > > > > SA into access > > > > > control SA is not part of the "PANA protocol". I'm not sure > > > > > if there is any > > > > > protocol work here, but definitely some guideline doc > > > > > (informational rfc) > > > > > would be useful. Should PANA WG produce this document? This > > > > is an open > > > > > question, comments welcome..... > > > > > > > > > I think this WG should produce such a document so that > PANA can be > > > > used/deployed on shared links. Don't we need an > > interoperable way of > > > > establishing this SA ? > > > > > > > > > > > > > > > > > > > > > If we can clearly specify what is in scope or not, it would > > > > > be useful. > > > > > > > > > > > >> What do others think? > > > > > >> > > > > > > I will try to have a slide as part of my presentation on > > > > > this topic so that > > > > > > we can get clarified at the meeting. > > > > > > > > > > Thank you. > > > > > > > > > > > > > > > > >>> > > > > > >>> 4) In section (3.3), towards the end > > > > > >>> > > > > > >>> A solution like PANA at the network layer may > > > > > >> be adequate if it can > > > > > >>> specify appropriate authentication > methods that > > > > > >> can derive and distribute > > > > > >>> keys for authentication, integrity and > > > > > >> confidentiality of data traffic > > > > > >>> either at the link or at the network layer. > > > > > >>> > > > > > >>> Again it is not clear what PANA is doing here. And > > > > > >> confidentiality can be removed > > > > > >>> i think as per the last ietf meeting. > > > > > >> > > > > > >> I'm not sure which part is not clear in the above text. > > > > Could you > > > > > >> elaborate or provide suggested text? > > > > > >> > > > > > > The text in itself is fine. But, it goes back to the same > > > > > question as > > > > > > to whether PANA will provide per-packet integrity, > > > > confidentiality ? > > > > > > > > > > PANA protocol stops where it produces PANA SA. > > > > > > > > > > Turning PANA SA into access control SA for L2 or L3 needs > > > > > some guidelines, > > > > > in general. Should PANA WG do this? > > > > > > > > > > Once you have the access control SA, you go ahead and use > > > it with L2 > > > > > ciphers, or IPsec... > > > > > > > > > See above. > > > > > > > > > > > > > > alper > > > > > > > > > mohan > > > > > > > > > > > > > > > > > > > > > > > From pana-request@research.telcordia.com Thu Mar 13 08:24:19 2003 Received: from thumper.research.telcordia.com (thumper.research.telcordia.com [128.96.41.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA29696 for ; Thu, 13 Mar 2003 08:24:18 -0500 (EST) Received: (from slmgr@localhost) by thumper.research.telcordia.com (8.12.8/8.12.1) id h2DDOdLa004831; Thu, 13 Mar 2003 08:24:39 -0500 (EST) Resent-Date: Thu, 13 Mar 2003 08:24:39 -0500 (EST) Old-Return-Path: Message-ID: <2A8DB02E3018D411901B009027FD3A3F03675F36@mchp905a.mch.sbs.de> From: Tschofenig Hannes To: "'Yacine.El_Mghazli@alcatel.fr'" Cc: "'Alper Yegin'" , pana Subject: RE: COPS-PR for PAA-EP interface Date: Thu, 13 Mar 2003 14:24:17 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by AMaViS - amavis-milter (http://www.amavis.org/) Resent-Message-ID: Resent-From: pana@research.telcordia.com X-Mailing-List: X-Loop: pana@research.telcordia.com List-Post: List-Help: Precedence: list Resent-Sender: pana-request@research.telcordia.com hi yacine! -snip > the technical requirements which "disqualified" COPS-PR as the midcom > protocol are the following: > * Multiple Agents operating on the same ruleset. > * MIDCOM requires that the MIDCOM Agent establish the session. ok. i see your point. for me it is particularly of interest to see new requirements caused by pana which - could also serve as an input to the midcom group - provide us more insight into the pana protocol interaction. i only see a problem if pana wants to do the same work as midcom. > > do we have such requirements in PANA that prevent us from taking > advantage of the dynamic provisioning ability of COPS ? I guess no... i am not saying that cops-pr is a bad protocol for controlling eps by a paa. > > moreover, I carefully red the PAA-EP requirements thread and, > above the > particularly dynamic context of PANA, it appears that we have already > some PANA specific requirements which are directly adressed > by COPS-PR. > > so yes I personnaly think that the working group should setup its own > requirements for this interface... requirements or protocols? in the continuity of the > discussions > held on the ML and the work presented at atlanta. discussing these things in atlanta is certainly a good idea. ciao hannes > > > > > ciao > > hannes > > thanks, > yacine > > > > > > > > >>-----Original Message----- > >>From: Alper Yegin [mailto:alper@docomolabs-usa.com] > >>Sent: Thursday, March 13, 2003 8:01 AM > >>To: Yacine.El_Mghazli@alcatel.fr; pana > >>Subject: Re: COPS-PR for PAA-EP interface > >> > >> > >> > >>Hello Yacine, > >> > >>Thanks for the draft analizing COPS-PR. One question/comment: > >> > >> In the context of PANA, the access control information > >>provisioned by > >> the PAA to the EP consists are DI-based filters. > Depending on the > >> access technology, DIs might contain any of IP address, > link-layer > >> address, switch port number, etc. of a device. > >> > >>In some scenarios, some keying material will be passed along > >>with the DI to > >>the EPs. Would new data types necessary for this, or does > >>COPS-PR already > >>handle this? > >> > >>Thanks. > >> > >>alper > >> > >> > >> > >> > >>On 3/10/03 2:50 AM, "Yacine.El_Mghazli@alcatel.fr" > >>