Skip to main content

EAP Usability

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Alan DeKok
Last updated 2022-09-06 (Latest revision 2022-03-05)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document defines methods which enable simpler deployment of TLS- based EAP methods. It defines new certificate fields, and uses existing certificate fields in order describe new methods for bootstrapping security. The methods defined here change TLS-based EAP supplicant configuration from a complex and insecure process to one that is automated, and is essentially trivial. These methods are still, however, compatible with existing standards and practices.


Alan DeKok

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)