1 / 5

TGai Motions

TGai Motions. Date: 2014-01-22. Authors:. Comment #2983. Comment: FILS key establishment without a trusted third party clause does not clearly describe the protocol. Proposed resolution: This sub-clause is really hard to follow and does not describe

elias
Download Presentation

TGai Motions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. TGai Motions Date: 2014-01-22 Authors: Rene Struik (Struik Security Consultancy)

  2. Comment #2983 • Comment: FILS key establishment without a trusted third party clause does not clearly • describe the protocol. • Proposed resolution: This sub-clause is really hard to follow and does not describe • each message and its contents clearly. Please re-work to describe the protocol clearly. • Discussion: • Comment discussed extensively with commenter, so as to get clarification of comment • (since comment itself did not include actionable resolution text). • Verbal notes taken as basis for clarifications thought from commenter, resulting in • document 14/0180r0. Rene Struik (Struik Security Consultancy)

  3. Motion #1 • Incorporate suggested resolution of CID #2983, as documented in • 11-14-0180-00-00ai-suggested-resolution-security-comment-CID-2983. • Result: Y/N/A Rene Struik (Struik Security Consultancy)

  4. Comment #2222 • Comment: The description of what is encrypted and decrypted is in conflict with • section 11.11.2.4 which indicates that the portion of the association frames after the • FILS session element is subject to encrypt/decrypt. • Proposed resolution: Resolve the conflict with section 11.11.2.4. • Discussion: • Main steps: • Removed confusing section 11.11.2.8 • Explicitly mentioned in 11.11.2.4 that Container objects should be incorporated when constructing Association Response frame • Suggested to rename “Secure Container” to “Container” throughout draft, so as to remove confusion. • Note: This comment was also addressed in 13/1193r1 (posted September 17, 2013) Rene Struik (Struik Security Consultancy)

  5. Motion #2 • Incorporate suggested resolution of CID #2222, as documented in • 11-14-0183-00-00ai-suggested-resolution-security-comment-cid-2222. • Result: Y/N/A Rene Struik (Struik Security Consultancy)

More Related