Extensible Authentication Protocol Session-Id Derivation for EAP Subscriber Identity Module , EAP Authentication and Key Agreement , and Protected EAP
RFC 8940, “Extensible Authentication Protocol Session-Id Derivation for EAP Subscriber Identity Module , EAP Authentication and Key Agreement , and Protected EAP”, is a Proposed Standard document published in October 2020 by A. DeKok. It updates RFC 5247. The canonical text is published by the RFC Editor.
Abstract
RFC 5247 is updated to define and clarify EAP Session-Id derivation for multiple Extensible Authentication Protocol (EAP) methods. The derivation of Session-Id was not given for EAP Subscriber Identity Module (EAP-SIM) or EAP Authentication and Key Agreement (EAP-AKA) when using the fast reconnect exchange instead of full authentication. The derivation of Session-Id for full authentication is clarified for both EAP-SIM and EAP-AKA. The derivation of Session-Id for Protected EAP (PEAP) is also given. The definition for PEAP follows the definition for other TLS-based EAP methods.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 8940 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 8939 Deterministic Networking Data Plane: IP
- RFC 8938 Deterministic Networking Data Plane Framework
- RFC 8937 Randomness Improvements for Security Protocols
- RFC 8943 Concise Binary Object Representation Tags for Date
- RFC 8936 Poll-Based Security Event Token Delivery Using HTTP
- RFC 8944 A YANG Data Model for Layer 2 Network Topologies
- RFC 8935 Push-Based Security Event Token Delivery Using HTTP
- RFC 8945 Secret Key Transaction Authentication for DNS