focus on internet & telecom standardization topics

hist. pages: SIP/IMS, SEC...

Home

Organizations

# # #

Standardization work

# IETF WGs: RFCs #

# #

Top

# Active WGs

# Concluded WGs

# IAB

# IRTF

# RFC index

# IETF map

# 6lowpan # 6man # adslmib # alto # ancp # atoca # autoconf # avt # behave # bfd # bliss # bmwg # calsify # ccamp # codec # conex # core # csi # cuss # dccp # decade # dhc # dime # dispatch # dkim # dnsext # dnsop # drinks # eai # ecrit # emu # enum # fecframe # forces # geopriv # grow # hip # hokey # httpbis # httpstate # hybi # idr # intarea # ipdvb # ipfix # ippm # ipsecme # iri # isis # isms # karp # keyprov # kitten # krb-wg # l2tpext # l2vpn # l3vpn # ledbat # lisp # lsd # ltans # manet # marf # martini # mboned # mediactrl # mext # mif # mip4 # mipshop # mmusic # morg # mpls # mptcp # msec # multimob # nea # netconf # netext # netlmm # netmod # nfsv4 # nsis # ntp # oauth # opsawg # opsec # ospf # p2psip # pce # pcn # pcp # pim # pkix # pmol # pppext # ppsp # precis # pwe3 # radext # rmt # roll # rtgwg # salud # savi # shim6 # sidr # sieve # simple # sipclf # sipcore # siprec # smime # soc # softwire # speechsc # speermint # storm # syslog # tcpm # tictoc # tls # trill # tsvwg # v6ops # vcarddav # vrrp # vwrap # xcon # xmpp # yam

A comprehensive and accurate list of drafts for this WG is available at: datatracker.ietf.org/wg/emu
For an extended list including personal drafts related to this WG, enter '-emu-' at: datatracker.ietf.org/doc

EMU - Published RFCs

EAP Method Update working group
Created: 01-2006, useful link: tools.ietf.org/wg/emu

SEC: Security
IETF Area

Last Update: August 10, 2010


RFC 5216	pS	34 p.	EAP-TLS Authentication Protocol
RFC 5421	I	10 p.	Basic Password Exchange within EAP-FAST
RFC 5433	pS	38 p.	EAP - Generalized Pre-Shared Key (EAP-GPSK) Method
RFC 5931	I	40 p.	EAP - Authentication Using Only a Password

RFC5216
03/2008
(34 p.)
pdf(2p)

D. Simon
B. Aboba
R. Hurst

The EAP-TLS Authentication Protocol

The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides support for multiple authentication methods. Transport Layer Security (TLS) provides for mutual authentication, integrity- protected ciphersuite negotiation, and key exchange between two endpoints. This document defines EAP-TLS, which includes support for certificate-based mutual authentication and key derivation.

This document obsoletes RFC 2716. A summary of the changes between this document and RFC 2716 is available in Appendix A.


List	Status:	Proposed Standard

RFC5421
03/2009
(10 p.)
pdf(2p)

N. Cam-Winget
H. Zhou

Basic Password Exchange within EAP-FAST

The Flexible Authentication via Secure Tunneling Extensible Authentication Protocol (EAP-FAST) method enables secure communication between a peer and a server by using Transport Layer Security (TLS) to establish a mutually authenticated tunnel. Within this tunnel, a basic password exchange, based on the Generic Token Card method (EAP-GTC), may be executed to authenticate the peer.


List	Status:	Informational

RFC5433
02/2009
(38 p.)
pdf(2p)

T. Clancy
H. Tschofenig

EAP - Generalized Pre-Shared Key (EAP-GPSK) Method

This memo defines an Extensible Authentication Protocol (EAP) method called EAP Generalized Pre-Shared Key (EAP-GPSK). This method is a lightweight shared-key authentication protocol supporting mutual authentication and key derivation.


List	Status:	Proposed Standard

RFC5931
08/2010
(40 p.)
pdf(2p)

D. Harkins
G. Zorn

EAP - Authentication Using Only a Password

This memo describes an Extensible Authentication Protocol (EAP) method, EAP-pwd, which uses a shared password for authentication. The password may be a low-entropy one and may be drawn from some set of possible passwords, like a dictionary, which is available to an attacker. The underlying key exchange is resistant to active attack, passive attack, and dictionary attack.


List	Status:	Informational