eap-7----Page:6
1 2 3 4 5 6 7 8
|
TLS/IA Security Optional multi-phase negotiation. Allows subsequent exchange to be predicated on success of prior exchange Phases are optional in resumed sessions Additional “Inner Secret” is computed. Mixes TLS master secret and all session keys from inner authentications. Prevents MitM attack. Inner Secret is mutually confirmed at the end each phase. Result of inner authentication is securely exchanged. Prevents truncation attack. No change to TLS handshake itself or cipher usage within TLS. |