%% You should probably cite rfc8940 instead of this I-D. @techreport{ietf-emu-eap-session-id-01, number = {draft-ietf-emu-eap-session-id-01}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-emu-eap-session-id/01/}, author = {Alan DeKok}, title = {{EAP Session-Id Derivation for EAP-SIM, EAP-AKA, and PEAP}}, pagetotal = 9, year = 2019, month = nov, day = 4, abstract = {EAP Session-Id derivation has not been defined for EAP-SIM or EAP-AKA when using the fast re-authentication exchange instead of full authentication. This document updates RFC 5247 to define those derivations for EAP-SIM and EAP-AKA. Since RFC5448bis defines the Session-ID for EAP-AKA', the definition for EAP-AKA' is not included here. RFC 5247 also does not define Session-Id derivation for PEAP. A definition is given here which follows the definition for other TLS-based EAP methods.}, }