RE: [LinkSec] linksec roadmap
> Using, I believe, an unconfirmed key-update protocol. And
> any key that is shared
> by millions of users is as useless as no key at all...
No ... these keys are worth about $40.00 a month.
802 link layers support broadcast and multicast, so group keys are a required mechanism. The size of the groups and means to enroll, distribute, update and disenroll (not to be confused with revoke) are details to be determined.
However ... group keys are bad as the base mechanism. Enrollment and key changes need to be based on pair-wise authentication. So ... pairwise authentication is a strong requirement.
Paul
> -----Original Message-----
> From: Marcus Leech [mailto:mleech@nortelnetworks.com]
> Sent: Tuesday, December 10, 2002 11:22 AM
> To: Paul Lambert
> Cc: Russ Housley; stds-802-linksec@ieee.org
> Subject: Re: [LinkSec] linksec roadmap
>
>
> Paul Lambert wrote:
>
> > Not necessarily ... existing cable and satillte
> distribution system provide fairly rapid updates of 'group
> keys' to millions of users.
> >
> Using, I believe, an unconfirmed key-update protocol. And
> any key that is shared
> by millions of users is as useless as no key at all...
>
> --
> ----------------------------------------------------------------------
> Marcus Leech Mail: Dept 8M70,
> MS 012, FITZ
> Advisor Phone: (ESN)
> 393-9145 +1 613 763 9145
> Security Architecture and Planning Fax: (ESN)
> 393-9435 +1 613 763 9435
> Nortel Networks mleech@nortelnetworks.com
> -----------------Expressed opinions are my own, not my
> employer's------
>