On 6/8/20 2:25 PM, Hannes Tschofenig wrote:
> Hi all
> I read through draft-aura-eap-noob-08 during the call for adoption.
> The draft acknowledges that the concept of "onboarding" is a new term for an
> old concept, namely network access authentication. I like the draft from that
> point of vi
Hi Tuomas,
We are OK with solving credential provisioning to the peer in EAP level (rather
than just in EAP-NOOB).
How exactly to do credential provisioning needs further thought. We will be
happy to discuss this further.
Philip
From: Aura Tuomas [mailto:tuomas.a...@aalto.fi]
Sent: 9 March, 2
Hi Philip,
It would definitely be useful to provision various types of long-term
credentials after the security bootstrapping and to use them for
reauthentication later. One way to achieve this with the current spec is to use
the exported AMSK as a shared key for a separate credential provision
