Content deleted Content added
Guy Harris (talk | contribs) Undid revision 1148157441 by 85.132.110.251 (talk) - rv randomness |
|||
Line 93:
Tunnel Extensible Authentication Protocol (TEAP; {{IETF RFC|7170}}) is a tunnel-based EAP method that enables secure communication between a peer and a server by using the Transport Layer Security (TLS) protocol to establish a mutually authenticated tunnel. Within the tunnel, TLV (Type-Length-Value) objects are used to convey authentication-related data between the EAP peer and the EAP server.
In addition to peer authentication, TEAP allows the peer to ask the server for certificate by sending request in [[Certificate signing request|PKCS#10]] format and the server can provision certificate to the peer in [rfc:2315 PKCS#7] format. The server can also distribute trusted root certificates to the peer in [rfc:2315 PKCS#7] format. Both operations are enclosed into the corresponding TLVs and happen in the secure way inside previously established TLS tunnel.
===EAP Subscriber Identity Module (EAP-SIM)===
| |||