1 / 3

EAP /EAP-Method interface

EAP /EAP-Method interface. EAP Method. EAP Method. Method-state. Method-state. Startmethod rx.Rsp Rx.NAK. rdy.Req rdy.noReq. rxMethodReq. rdy.Rsp rdy.noRsp. EAP Layer. EAP Layer. 802.1x. 802.1x. CHALLENGE bldReq Methodstate= CON rdy.Req=TRUE. PassThru Method. startMethod.

baruch
Download Presentation

EAP /EAP-Method interface

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. EAP /EAP-Method interface EAP Method EAP Method Method-state Method-state Startmethod rx.Rsp Rx.NAK rdy.Req rdy.noReq rxMethodReq rdy.Rsp rdy.noRsp EAP Layer EAP Layer 802.1x 802.1x

  2. CHALLENGE bldReq Methodstate= CON rdy.Req=TRUE PassThru Method startMethod Initialize Method eapmsg=null UCT TIMEOUT increment timeout UCT RADIUS- Request bldRADReq(eapmsg) send RADIUS Request radWhile=<timeout> radWhile=0 rcvRad.challeenge rcvRad.reject rcvRad.accept rxResp!!rxNAK REJECT bldReq MethodState=Fail rdyReq=TRUE ACCEPT bldReq methodState=SUC rdyReq=TRUE UCT UCT Done

  3. passthru method questions • A number of special cases seem to appear • current eap assumes method does not deal with NAK - but need to for forwarding to RADIUS • current eap assumes method does not send Success/Fail - but need to with passthru • Integrity Check interface could be added if local integrity checking is done • e.g. in RADIUS-Request include an integrityCheck function and a ICFail state that to transition to if the check fails • My Conclusion -- pass thru method is not quite right, probably need a passthru “gateway” which translates between requirements for eap transport.

More Related