UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF - RFC 9190

EAP-TLS 1.3: Using the Extensible Authentication Protocol with TLS 1.3

active, Most Current
Organization: IETF
Publication Date: 1 February 2022
Status: active
Page Count: 31
scope:

Abstract

The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides a standard mechanism for support of multiple authentication methods. This document specifies the use of EAP-TLS with TLS 1.3 while remaining backwards compatible with existing implementations of EAP-TLS. TLS 1.3 provides significantly improved security and privacy, and reduced latency when compared to earlier versions of TLS. EAP-TLS with TLS 1.3 (EAP-TLS 1.3) further improves security and privacy by always providing forward secrecy, never disclosing the peer identity, and by mandating use of revocation checking when compared to EAP-TLS with earlier versions of TLS. This document also provides guidance on authentication, authorization, and resumption for EAP-TLS in general (regardless of the underlying TLS version used). This document updates RFC 5216.

Document History

RFC 9190
February 1, 2022
EAP-TLS 1.3: Using the Extensible Authentication Protocol with TLS 1.3
Abstract The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides a standard mechanism for support of multiple authentication methods. This document specifies the use of EAP-TLS...

References

This document references:
IEEE 802.11 - Information Technology — Telecommunications and Information Exchange between Systems Local and Metropolitan Area Networks — Specific Requirements Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications
Published by IEEE on December 3, 2020
The scope of this standard is to define one medium access control (MAC) and several physical layer (PHY) specifications for wireless connectivity for fixed, portable, and moving stations (STAs)...
This document references:
IEEE 802.1AE - Local and Metropolitan Area Networks - Media Access Control (MAC) Security Corrigendum 1: Tag Control Information Figure
Published by IEEE on July 22, 2021
A description is not available for this item.
This document references:
IEEE 802.1X - Local and Metropolitan Area Networks—Port-Based Network Access Control
Published by IEEE on January 30, 2020
For the purpose of providing compatible authentication, authorization, and cryptographic key agreement mechanisms to support secure communication between devices connected by IEEE 802® Local Area...
This document references:
RFC 1661 - Point-to-Point Protocol (PPP)
Published by IETF on July 1, 1994
A description is not available for this item.
This document references:
IETF RFC 2560 - X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP
Published by IETF on June 1, 1999
A description is not available for this item.
This document is referenced by:
RFC 9427 - TLS-Based Extensible Authentication Protocol (EAP) Types for Use with TLS 1.3
Published by IETF on June 1, 2023
The Extensible Authentication Protocol-TLS (EAP-TLS) (RFC 5216) has been updated for TLS 1.3 in RFC 9190. Many other EAP Types also depend on TLS, such as EAP-Flexible Authentication via Secure...
View Less
View All
Advertisement