Hi Michael,
EAP can be used in the context of IoT for authentication. To transport
EAP from the IoT device we need a light EAP lower-layer. This would be
CoAP. Morover, according to EAP key management framework, keys are
exported to protect the link and the EAP lower-layer itself. So yes,
OSCORE could be used for that kind of protection.
Another aspect, it is that the use case we consider is the case where
an IoT device is trying to access a security domain under the control of
a “controller” that is connected to a backend AAA infrastructure, which
acts as EAP authenticator.
Best Regards.
El 07/12/2020 a las 23:09, Michael Richardson escribió:
Could someone point to a use case for "EAP over CoAP" please?
Is the goal to key an OSCORE context, or what?
--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works | IoT architect [
] m...@sandelman.ca http://www.sandelman.ca/ | ruby on rails [
_______________________________________________
Ace mailing list
a...@ietf.org
https://www.ietf.org/mailman/listinfo/ace
_______________________________________________
Emu mailing list
Emu@ietf.org
https://www.ietf.org/mailman/listinfo/emu
