%% You should probably cite rfc7029 instead of this I-D. @techreport{ietf-emu-crypto-bind-03, number = {draft-ietf-emu-crypto-bind-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-emu-crypto-bind/03/}, author = {Sam Hartman and Margaret Cullen and Dacheng Zhang}, title = {{EAP Mutual Cryptographic Binding}}, pagetotal = 25, year = 2013, month = mar, day = 14, abstract = {As the Extensible Authentication Protocol (EAP) evolves, EAP peers rely increasingly on information received from the EAP server. EAP extensions such as channel binding or network posture information are often carried in tunnel methods; peers are likely to rely on this information. {[}RFC 3748{]} is a facility that protects tunnel methods against man-in-the-middle attacks. However, cryptographic binding focuses on protecting the server rather than the peer. This memo explores attacks possible when the peer is not protected from man-in- the-middle attacks and recommends mutual cryptographic binding, a new form of cryptographic binding that protects both peer and server along with other mitigations.}, }