Chris, > 2. EAP-FAST modifies the documented behavior of both MS-CHAPv2 and > GTC. For MS-CHAPv2 again it is unclear why the changes are needed. > What is the advantage of seeding MS-CHAPv2 with data from the > outer tunnel?
I'm not at all familiar with EAP-FAST but I expect this is intended to establish a cryptographic binding between EAP-MSCHAPv2 and the outer tunnel, per section 7.2.1 of RFC 3748. See also RFC5247 & RFC5056 for fuller discussions of the subject. HTH, josh. JANET(UK) is a trading name of The JNT Association, a company limited by guarantee which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Science and Innovation Campus, Didcot, Oxfordshire. OX11 0SG _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
