Name: draft-badra-eap-double-tls-02
Title: EAP-Double-TLS Authentication Protocol
State: Active
Authors: Mohamad Badra, Pascal Urien
Group: Individual Submissions (none)
Date: 2004-11-30
EAP-Double-TLS is an EAP protocol that extends EAP-TLS. In EAP-TLS, a full
TLS handshake is used to mutually authenticate a client and server and to
share a secret key. EAP-Double-TLS extends this authentication negotiation
by using a secure connection established by the TLS Pre Shared Key (PSK)
handshake to exchange additional information between the client and the
server. The secure connection established by the PSK handshake may then be
used to allow the server and the client to securely exchange their identity
and to update security attributes for next sessions. EAP-Double-TLS allows
client and server to establish keying material for use in the data
connection between the client and the authenticator. The keying material is
established implicitly between client and server based on the TLS PSK
handshake.
[sh-index] Back to list of manuals
|
| |
