[Joe] OK, I'm not sure we need to include text about the key derivation. If it is the key derivation that is the only difference then change will only be caught after the completion of the method if the keys are used.
The problem is that if the EAP-TLS key derivation formula is re-used in an another method (as it has been), then the problem may never be caught. So I think we need to caution against that.
_______________________________________________ Emu mailing list [email protected] https://www1.ietf.org/mailman/listinfo/emu
