[Ietf-keyprov] Proposed Charter
Hallam-Baker, Phillip
pbaker at verisign.com
Thu Dec 28 20:24:17 CST 2006
There are two issues here:
1) Can we make use of existing roots of trust to authenticate the Keyprov exchange, thus avoiding the need for out of band authenticators?
2) Can we use existing protocols supported by the phone to avoid the need for KeyProv on those platforms?
The answer in both cases appears to be 'it depends'. In particular it depends on what the carrier is prepared to allow application software to access and uder what terms.
The other side of the equation is what the registry is willing to support. Cell phones are only one platform here amongst many.
> -----Original Message-----
> From: Lakshminath Dondeti [mailto:ldondeti at qualcomm.com]
> Sent: Thursday, December 28, 2006 6:30 PM
> To: Hallam-Baker, Phillip; ietf-keyprov at safehaus.org
> Cc: iesg at ietf.org
> Subject: Re: [Ietf-keyprov] Proposed Charter
>
> > In particular the ability to provision symmetric keys and
> associated attributes dynamically to already issued devices
> such as cell phones and USB drives is highly desirable.
>
> Hi Phil,
>
> I was wondering about the applicability of keyprov work to
> cell phones as mentioned in the above sentence from the
> proposed charter. We have had some discussion on this at the
> BoF meeting in San Diego, but could you elaborate on
> i) what types of cell phones (following which standards, e.g., 3GPP,
> 3GPP2 etc) might use keyprov protocols?
> and ii) what kind of keys in cell phones might be provisioned
> by keyprov protocols?
>
> As it stands now there are protocols defined by 3GPP and
> 3GPP2 for service key provisioning (e.g., OTASP and GBA). Is
> the charter saying that there are deficiencies in those
> protocols that keyprov is going to address?
>
> thanks,
> Lakshminath
>
>
More information about the Ietf-keyprov
mailing list