4. Using TLS Bootstrapping in EAP
Per EAP, RFC 9966 usa i NAI mechanisms di RFC 9965. Lo username "tls-pok-dpp" MUST essere incluso; initial identity e "[email protected]" e questo identifier MUST essere incluso nella EAP Identity response.
EAP Peer EAP Server
-------- ----------
<- EAP-Request/
Identity
EAP-Response/
Identity
([email protected]) ->
<- EAP-Request/
EAP-Type=TEAP
(TLS Start)
EAP-Response/
EAP-Type=TEAP
(TLS client_hello with
tls_cert_with_extern_psk
and pre_shared_key) ->