eap-7----Page:12
1 2 3 4 5 6 7 8 9 10 11 12 13 14
|
Security Requirements Mutual authentication at each leg of the triangle. Mutually authenticating EAP method TSK derivation protocol supporting mutual auth, secure ciphersuite and capabilities negotiation Mutual authentication between NAS and AAA server Fresh session keys at each leg of the triangle EAP method provides fresh MSK, EMSK, IV No AAA static keys as in [RFC2865] RADIUS over IPsec Diameter over TLS/IPsec TSK derivation protocol guarantees freshness Keys protected from compromise Appropriate key strength (see [KeyLen]) MK not derivable from other master or transient key types MSK transported securely from AAA server to NAS Established key wrap algorithms (not RFC 2548) Protection from compromise by AAA intermediaries Binding to correct session, NAS, client |