Frederic Evrard wrote:
Ok thanks, and this HMACs keys are used to forge
TLS Record Layer : Hanshake Protocol : Encrypted Hanshake Message
HMACs(shared secret+DAta).
Is it used to control integrity of the TLS Handshake packet ?
Not for ensuring the integrity of the TLS Handshake packets, but for
en
> Frederic Evrard wrote:
>> I'm using open-ssl to do EAP-TLS authentication, then I've a question
>> about something strange for me.
>> When you want to use TLS to mount an encrypted tunnel, you need a
>> session
>> key, but in authentication you only need certificate checking ?? Why
>> generate pr
EAP-TLS is a bit different from conventional TLS in its use of TLS Handshake
and TLS Record layers. Usually when you use TLS for let's say a web server
authentication session, the TLS handshake layer is used for authentication
and key material derivation, and subsequently the TLS Record layer is u
Frederic Evrard wrote:
I'm using open-ssl to do EAP-TLS authentication, then I've a question
about something strange for me.
When you want to use TLS to mount an uncrypted tunnel, you need a session
key, but in authentication you only need certificate checking ?? Why
generate pre-master-key, master
