Layering and Orthogonality
- Datastream protection distinct from authentication ...
-
- Conceptually clean
- Useful to support older authentication schemes (eg
username+password)
with newer datastream protection (ie, TLS)
- But integration is better
-
- Don't want to have secure session with impostor,
so have to authenticate secure-stream
endpoint anyway
- Key management for authentication = key mgt for secure
session
|
|
[next | top]
|
|
BLOCKS BoF, IETF 47, March 2000
|
|