Re: iSCSI: DH-CHAP

To: Ofer Biran <BIRAN@il.ibm.com>
Subject: Re: iSCSI: DH-CHAP
From: Bill Studenmund <wrstuden@wasabisystems.com>
Date: Mon, 15 Apr 2002 10:08:30 -0700 (PDT)
Cc: David Jablon <dpj@theworld.com>, David Black <Black_David@emc.com>, <ips@ece.cmu.edu>, <ElizabethRodriguez@ieee.org>, <Elizabeth.G.Rodriguez@123mail.net>
Content-Type: TEXT/PLAIN; charset=US-ASCII
In-Reply-To: <OF98DFD98F.23908302-ONC2256B9A.0042DA15@telaviv.ibm.com>
Sender: owner-ips@ece.cmu.edu

On Sat, 13 Apr 2002, Ofer Biran wrote:

> Now - the WG should decide whether the 'IP issue' of SRP is a good enough
> reason to replace it with another mandatory method, introducing this
> deficiency. SRP was originally chosen over CHAP due to the risk of an
> attacker obtaining the password. DH-CHAP only makes that attack 'networkly'
> more difficult, but still possible. As I understand it, the IP situation
> of SRP (free license of the actual patent, 'reasonable and
> non-discriminatory' IETF statements for the patents that were brought up as
> 'might be related'), according to the IETF policy, should not cause the WG
> to change for something technically deficient.

I do not agree that that interpretation is correct. The IPR policy is
still at a position which will hinder iSCSI's incorporation in a number of
areas. To be specific, I do not think we will be able to get iSCSI code
with SRP in it into say the NetBSD kernel. I doubt it would go in the
other *BSDs either. SRP == MUST will close a number of doors to iSCSI.
Look at what happened with public key cryptography. The IPR issues
hindered its use for years. Do you want that for iSCSI?

Take care,

Bill

References:
- Re: iSCSI: DH-CHAP
  - From: "Ofer Biran" <BIRAN@il.ibm.com>

Prev by Date: Re: iSCSI - Basic Question
Next by Date: Re: DH-CHAP
Prev by thread: RE: iSCSI: DH-CHAP
Next by thread: RE: iSCSI: DH-CHAP
Index(es):
- Date
- Thread

Home

Last updated: Mon Apr 15 14:18:26 2002
9674 messages in chronological order