eap-7----Page:4
1 2 3 4 5 6 7 8 9 10 11 12 13 14
|
Master Key Types EAP Master Key (MK) A key derived between the EAP client and server that is local to the EAP method and MUST NOT be exported. Possession of other keys (MSK, TSKs, TEKs, EMSK) MUST NOT provide information useful in recovering the MK. The MK is proof of successful authentication, and therefore may enable fast re-authentication (e.g. TLS session resume) Master Session Key (MSK) 64B of keying material that is derived between the EAP client and server and exported by the EAP method. Used in derivation of Transient Session Keys (TSKs). Where a AAA server is present, the MSK is transported between the AAA server and NAS. The MSK allows a particular client to access the network via a particular NAS. |