%% You should probably cite rfc8146 instead of this I-D.
@techreport{harkins-salted-eap-pwd-05,
    number =    {draft-harkins-salted-eap-pwd-05},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-harkins-salted-eap-pwd/05/},
    author =    {Dan Harkins},
    title =     {{Adding Support for Salted Password Databases to EAP-pwd}},
    pagetotal = 7,
    year =      2016,
    month =     aug,
    day =       19,
    abstract =  {EAP-pwd is an EAP method that uses a shared password for authentication using a technique that is resistant to dictionary attack. It included support for raw keys and RFC2751-style double hashing of a password but did not include support for salted passwords. There are many existing databases of salted passwords and it is desirable to allow their use with EAP-pwd.},
}