On Feb 2, 2019, at 12:03 PM, John Mattsson <[email protected]> wrote: > Good suggestion, I'll add something like that to the resumption section in > draft-ietf-emu-eap-tls13
Thanks. >> e.g. TTLS and PEAP both allow session resumption, and when done, skip the >> phase 2 / inner-tunnel authentication. > > That seems like it could be a security problem in some implementations as > cross-method resumption is not discussed anywhere and TTLS and PEAP says that > inner-tunnel authentication is skipped for TLS resumption... I'm not sure what security problems there are. If a user authenticates via TTLS/PEAP, and resumes via PEAP/TTLS, the protocol flow is almost exactly the same. i.e. the only real difference between the resumed sessions is that one is encapsulated in PEAP, and the other in TTLS. They're otherwise identical. > Your planned document on TLS 1.3 for other EAP methods should have some text > describing this. Rather that forbidding cross-method resumption for TTLS and > PEAP, I assume one could just specify that inner-tunnel authentication must > be done after cross-method resumption. Or? I think it's fine to skip inner authentication. If the EAP server needs to do additional *authorization*, it can always refuse to resume the session. But if there's no additional authorization, I don't see any issue here. Alan DeKok. _______________________________________________ Emu mailing list [email protected] https://www.ietf.org/mailman/listinfo/emu
