Improved Extensible Authentication Protocol Method for 3rd Generation Authentication and Key Agreement (EAP-AKA')
draft-arkko-eap-rfc5448bis-01

Document Type Replaced Internet-Draft (individual)
Last updated 2018-03-05
Replaced by draft-ietf-emu-rfc5448bis
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-emu-rfc5448bis
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-arkko-eap-rfc5448bis-01.txt

Abstract

This specification defines a new EAP method, EAP-AKA', a small revision of the EAP-AKA method. The change is a new key derivation function that binds the keys derived within the method to the name of the access network. The new key derivation mechanism has been defined in the 3rd Generation Partnership Project (3GPP). This specification allows its use in EAP in an interoperable manner. In addition, EAP-AKA' employs SHA-256 instead of SHA-1. This specification also updates RFC 4187 EAP-AKA to prevent bidding down attacks from EAP-AKA'. This version of the EAP-AKA' specification updates a reference to constructing one field in the protocol, so that EAP-AKA' becomes compatible with 5G deployments as well.

Authors

Jari Arkko (jari.arkko@piuha.net)
Vesa Lehtovirta (vesa.lehtovirta@ericsson.com)
Vesa Torvinen (vesa.torvinen@ericsson.com)
Pasi Eronen (pasi.eronen@nokia.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)