Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

EAP-TLS PMK Generation

Hi All,

So WPA2-PSK, the PMK is derived from the PSK, then hashed and the 4-way handshake occurs.

With EAP-TLS using digital certificates, where is the PMK derived from? Can anyone explain please?

Many kind regards,

Ken

2 REPLIES
Bronze

Re: EAP-TLS PMK Generation

After the completion of a successful EAP authentication, the authentication server sends an EAP success message to the authenticator. This message tells the authenticator that the EAP authentication process was successful, and passes the pair-wise master key (PMK) to the authenticator that is in turn used as the basis for creating the encrypted stream.

New Member

Re: EAP-TLS PMK Generation

Many thx indeed for this.

Could I just ask, how the PMK is generated? in WPA2-PSK, it is derivved from the PSK itself. Does eap-tls or other eap-methods generate some random number as the PMK and exchange it?

Many thx indeed,

Ken

646
Views
0
Helpful
2
Replies
CreatePlease to create content