Extensible Authentication Protocol (EAP) Session-Id Derivation for EAP Subscriber Identity Module (EAP-SIM), EAP Authentication and Key Agreement (EAP-AKA), and Protected EAP (PEAP)
RFC 8940

Approval announcement
Draft of message to be sent after approval:

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: emu@ietf.org, draft-ietf-emu-eap-session-id@ietf.org, mohit.m.sethi@ericsson.com, Mohit Sethi <mohit.m.sethi@ericsson.com>, The IESG <iesg@ietf.org>, emu-chairs@ietf.org, rfc-editor@rfc-editor.org, rdd@cert.org
Subject: Protocol Action: 'EAP Session-Id Derivation for EAP-SIM, EAP-AKA, and PEAP' to Proposed Standard (draft-ietf-emu-eap-session-id-06.txt)

The IESG has approved the following document:
- 'EAP Session-Id Derivation for EAP-SIM, EAP-AKA, and PEAP'
  (draft-ietf-emu-eap-session-id-06.txt) as Proposed Standard

This document is the product of the EAP Method Update Working Group.

The IESG contact persons are Benjamin Kaduk and Roman Danyliw.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-emu-eap-session-id/


Technical Summary

   EAP Session-Id derivation has not been defined for EAP-SIM or EAP-AKA
   when using the fast re-authentication exchange instead of full
   authentication.  This document updates RFC 5247 to define those
   derivations for EAP-SIM and EAP-AKA.  RFC 5247 also does not define
   Session-Id derivation for PEAP.  A definition is given here which
   follows the definition for other TLS-based EAP methods.

Working Group Summary

There was nothing note worthy in the WG process which produced this document.  The WG was looking to clarify the missing in RFC 5247.

Document Quality

Session-Ids during fast resumption for EAP-SIM and EAP-AKA has been implemented in at least one open source tool by Mohit Sethi. 

Personnel

The document shepherd is Mohit Sethi. 
The Area Director is Roman Danyliw.