EAP-TLS too fast?
Jouni Malinen
jkmaline
Thu Feb 9 18:34:48 PST 2006
On Thu, Feb 09, 2006 at 11:15:29AM -0500, Andrea G Forte wrote:
> Here is the link to a paper in which they say the average delay was
> about 1.1 seconds (read Introduction for example) and later on in their
> own experiments they have a full authentication (without their proposed
> improvement) delay of 800+ msec.
> http://www.cs.umd.edu/~mhshin/paper/Proactive_Key_Dist_NG.pdf
> Are they just wrong? They use Pentium III computers for their
> experiments, but I would not think that this would make such a BIG
> difference.
I'm not completely sure on what is included in this 1.1 second time, but
like I mentioned before, good latency requires that the implementations
of supplicant, authenticator, and authentication server are good and do
not use things like polling for incoming frames.
I don't have any reason to question these results in their test setup,
but I believe that the original 1.1 second value could have been
improved greatly by optimizing the implementations even without changing
the protocol in any way.
--
Jouni Malinen PGP id EFC895FA
More information about the Hostap
mailing list