icos-3----Page:4
1 2 3 4 5 6 7 8
|
RFC 3748 Applicability Statement Applies to Scenario 2 only: EAP over the wire Realm of applicability EAP was designed for use in network access authentication, where IP layer connectivity may not be available. Use of EAP for other purposes, such as bulk data transport, is NOT RECOMMENDED. Limitations Just enough support for the reliable transport of authentication protocols, and no more. EAP assumes ordering guarantees from the lower layer; out of order transmission not supported EAP authentication methods generating payloads larger than the EAP MTU need to provide fragmentation support It may be necessary for an authentication algorithm to add one or two additional messages (at most one roundtrip) in order to run over EAP. Where certificate-based authentication is supported, the number of additional roundtrips may be much larger due to fragmentation of certificate chains. Where significant packet loss occurs along the path, EAP methods requiring many round-trips can experience difficulties. |