A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : EAP Mutual Cryptographic Binding
Author(s) : Sam Hartman
Margaret Wasserman
Dacheng Zhang
Filename : draft-hartman-emu-mutual-crypto-bind-00.txt
Pages : 23
Date : 2012-03-05
As the Extensible Authentication Protocol (EAP) evolves, EAP peers
rely increasingly on information received from the EAP server. EAP
extensions such as channel binding or network posture information are
often carried in tunnel methods; peers are likely to rely on this
information. [RFC 3748] is a facility that protects tunnel methods
against man-in-the-middle attacks. However, cryptographic binding
focuses on protecting the server rather than the peer. This memo
explores attacks possible when the peer is not protected from man-in-
the-middle attacks and recommends mutual cryptographic binding, a new
form of cryptographic binding that protects both peer and server.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-hartman-emu-mutual-crypto-bind-00.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
This Internet-Draft can be retrieved at:
ftp://ftp.ietf.org/internet-drafts/draft-hartman-emu-mutual-crypto-bind-00.txt
_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
