draft-hartman-emu-mutual-crypto-bind-00

EAP Mutual Cryptographic Binding
draft-hartman-emu-mutual-crypto-bind-00

Replaced Internet-Draft (None)
Document Stream:	No stream defined
Last updated:	2012-03-05
Replaced by:	draft-ietf-emu-crypto-bind
Intended RFC status:	(None)
Other versions:	(expired, archived): plain text, pdf, html

Document shepherd:	(None)
	Shepherd writeup

IESG State:	Replaced
Responsible AD:	(None)
Send notices to:	No addresses provided

Email Authors | IPR Disclosures | Dependencies to this draft | Check nits | Search Mailing Lists

This Internet-Draft is no longer active. Unofficial copies of old Internet-Drafts can be found here:
http://tools.ietf.org/id/draft-hartman-emu-mutual-crypto-bind.

Abstract:
As the Extensible Authentication Protocol (EAP) evolves, EAP peers rely increasingly on information received from the EAP server. EAP extensions such as channel binding or network posture information are often carried in tunnel methods; peers are likely to rely on this information. [RFC 3748] is a facility that protects tunnel methods against man-in-the-middle attacks. However, cryptographic binding focuses on protecting the server rather than the peer. This memo explores attacks possible when the peer is not protected from man-in- the-middle attacks and recommends mutual cryptographic binding, a new form of cryptographic binding that protects both peer and server.

Authors:
Sam Hartman <hartmans-ietf@mit.edu>
Margaret Wasserman <mrw@painless-security.com>
Dacheng Zhang <zhangdacheng@huawei.com>

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid)

EAP Mutual Cryptographic Binding draft-hartman-emu-mutual-crypto-bind-00

EAP Mutual Cryptographic Binding
draft-hartman-emu-mutual-crypto-bind-00