icos-4----Page:16
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21
|
Problems Solved by EAP* Secure configuration of Home Agent address and home address via EAP method Data origin and integrity/replay protection server to host Also confidentiality and host to server authentication Secure configuration of IKE credentials (e.g. preshared key) Bidirectional confidentiality and data origin, integrity/replay protection Mobility service authentication and authorization credentials are the same as for network access Optimization of signaling to reduce protocol needed for Home Agent discovery and confine it to a time when configuration is being done anyway Secondary effect *Assumes a secure, extensible EAP method! |