Re: [802.21] Security related study group in 802.21
Hi Maryna,
I am glad to see your proposal.
It is true that authentication between two MIHF is missing in the
current 802.21 draft. On the other hand, the authentication aspect is
already recognized as a candidate study group item in
21-07-0085-01-0000-mih-security.doc. So I can say that we are on the
same page in this regard.
Your slide #9 also mentions combining location updates with credential
requests, which seems very interesting optimization to me.
Your slide #10 discusses network identity. I have two questions here.
What is the difference between network name and network identity? (a
more general question is; what is the definition of network identity?)
Also, why do you discuss identity management issues in the context of
fast re-authentication while identity management issues seem to be
part of general network access authentication issues including initial
authentication and (fast) re-authentication?
Best Regards,
Yoshihiro Ohba
On Mon, Jul 02, 2007 at 04:23:54PM +0200, komarova wrote:
> Dear all,
>
> The current draft says that
> Any messages exchanged between two MIHF must be integrity and reply
> protected over secure transport.
> But the authentication between two MIHF is not discussed.
> I propose to add the following objective to the list defined in the
> document
> http://ieee802.org/21/doctree/2007-01_meeting_docs/21-07-0024-00-0000-Security_Issues_in_Transition.ppt:
>
> Investigate authentication, confidentiality and reliability issues with
> reference to communication between MIHF:
> Identify use cases and trust model;
> Investigate Key Hierarchy-based approach;
> Investigate Authentication-based approach.
> Please, find more detailed considerations in the attached file.
>
>
> Best regards,
> Maryna
>
> Michael G Williams a crit :
>
> >
> >Colleagues,
> >
> >Please vote as the letter ballot is closing on the 29th (this Friday)
> >
> >For the July meeting, there has been discussion of forming a study
> >group related to MIH security and general handover security (sort of
> >two topics)
> >
> >These appear to be the latest submissions on this effort:
> >
> >_http://ieee802.org/21/doctree/2007-03_meeting_docs/21-07-0085-01-0000-mih-security.ppt_
> >_http://ieee802.org/21/doctree/2007-03_meeting_docs/21-07-0122-00-0000-Security_proposal.ppt_
> >_http://ieee802.org/21/doctree/2007-03_meeting_docs/21-07-0127-00-0000-Hokey_802.21.ppt_
> >
> >_http://ieee802.org/21/doctree/2007-01_meeting_docs/21-07-0024-00-0000-Security_Issues_in_Transition.ppt_
> >
> >Are there any discussions people would like to have on the mailing
> >list about the potential study group? This is highly encouraged ;^)
> >
> >Best Regards,
> >Michael
> >
>
>