[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)

To: <dharkins@xxxxxxxxxx>
Subject: RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
From: <Pasi.Eronen@xxxxxxxxx>
Date: Wed, 30 Jan 2008 08:58:50 +0200
Cc: tls@xxxxxxxx
In-reply-to: <28109.216.31.249.246.1201632747.squirrel@xxxxxxxxxxxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <B356D8F434D20B40A8CEDAEC305A1F240511959C@xxxxxxxxxxxxxxxxxxxxxx> <87sl15pxnx.fsf@xxxxxxxxxxxxxxxxxxx> <B356D8F434D20B40A8CEDAEC305A1F24052E8740@xxxxxxxxxxxxxxxxxxxxxx> <28109.216.31.249.246.1201632747.squirrel@xxxxxxxxxxxxxxxxxx>
Thread-index: AchiqnpleRTnSqciRz6ReMn/8wK96AAYsqxA
Thread-topic: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)

Dan Harkins wrote:

> Personally I would view a password-based authentication scheme 
> that assumes the shared key is a low-entropy one or is selected 
> from a limited set of keys, like a dictionary, as more useful to 
> the real world. I believe that is the predominant access method 
> used in the Internet today.

Just being curious, what would be the main differences between
the authentication scheme you're thinking about, and RFC 5054?

Best regards,
Pasi


_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
  - From: Chris Newman
- RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
  - From: Dan Harkins

References:
- [TLS] ECDHE_PSK as WG item?
  - From: Pasi.Eronen
- [TLS] Re: ECDHE_PSK as WG item?
  - From: Simon Josefsson
- [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Pasi.Eronen
- Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Dan Harkins

Prev by Date: Re: [TLS] shared secrets from passwords
Next by Date: RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
Previous by thread: Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
Next by thread: RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
Index(es):
- Date
- Thread