RE: Key Identification RE: [LinkSec] Requirements
At 10:46 16/12/2002 +0200, antti.pietilainen@nokia.com wrote:
>As we know, 802.3ah has an identifier, namely logical link ID (LLID)which
>could be used as the required identifier. Of course, LLID is specific to
>EPON. Therefore, I use this opportunity to express an opinion that, for
>instance, point-to-point links in subscriber access netwokrs do not
>require encryption because they consist of separate, safely installed
>wires (that is the law) and soundly configured Ethernet switches. EPON, on
>the other hand, needs encryption desperately.
...But interestingly, by the same argument, EPON would only need encryption
from the OLT to the ONUs, as traffic from ONUs to OLT is point-to-point and
could therefore be left in clear.
Regards
Tony
>Antti Pietilainen
>
>Nokia Research Center
>PL 407
>00045 NOKIA GROUP
>p. 071-8036660, fax. 071-8036214
>sähköposti: antti.pietilainen@nokia.com
>
> > -----Original Message-----
> > From: ext Paul Lambert [mailto:PaulLambert@AirgoNetworks.Com]
> > Sent: Monday, December 16, 2002 9:16 AM
> > To: Walker, Jesse; mick_seaman@ieee.org; stds-802-linksec@ieee.org
> > Subject: Key Identification RE: [LinkSec] Requirements
> >
> >
> >
> > >The only
> > > possible identifier for the key that can be used at this
> > level are MAC
> > > addresses, unless of course someone wants to invent a new 802
> > > architecture.
> >
> > Yes ... the MAC address is very useful for identifing a key,
> > although a keyID, SAID, or SPI mechanism could also be used.
> > Using a MAC address to identify an association/key is not the
> > same as authenticating the MAC address.
> >
Regards,
Tony