[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Unique Shared Secrets (4.4.2) in opes-authorization

To: eburger@xxxxxxxxxxxxx, OPES Group <ietf-openproxy@xxxxxxx>
Subject: RE: Unique Shared Secrets (4.4.2) in opes-authorization
From: "Abbie Barbir" <abbieb@xxxxxxxxxxxxxxxxxx>
Date: Wed, 23 Oct 2002 10:18:47 -0400
List-archive: <http://www.imc.org/ietf-openproxy/mail-archive/>
List-id: <ietf-openproxy.imc.org>
List-unsubscribe: <mailto:ietf-openproxy-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openproxy@xxxxxxxxxxxx

Title: RE: Unique Shared Secrets (4.4.2) in opes-authorization

eric,

The intend here is to secure the Hop-by-hop traffic. We can reaxime the wording and the requirements.

-- This will be added as an action item for the -01 draft.

Abbie

> -----Original Message-----
> From: Eric Burger [mailto:eburger@xxxxxxxxxxxxx]
> Sent: Monday, October 21, 2002 10:35 PM
> To: OPES Group
> Subject: Unique Shared Secrets (4.4.2) in opes-authorization
>
>
>
> Why must the shared secrets be unique for each requestor /
> responder pair? Why do we care? In fact, such a requirement
> opens a security hole: I can guess someone else's key by
> trying to enter keys until the "system" tells me I can't
> because someone else has that key.
>
> I would drop the bullet.
>
>

Prev by Date: RE: Authentication Requirements in opes-authorization-00 (section 4.2)
Next by Date: RE: Privacy Considerations (4.5) in opes-authorization-00
Previous by thread: RE: Authentication Requirements in opes-authorization-00 (section 4.2)
Next by thread: RE: Unique Shared Secrets (4.4.2) in opes-authorization
Index(es):
- Date
- Thread