Master key and Pairwise Master Key

Khan Ferdous Wahid khanferdous.wahid at
Wed Jul 14 22:44:39 CEST 2010

I want to know about the Master key (MK) encapsulation and Pairwise Master
key (PMK) generation during EAP-TLS or EAP-TTLS methods. When the supplicant
is authenticated, the server generates a MK and sends it in encrypted format
to the supplicant. How this MK (I think it is a random number) is encrypted?
Which algorithm is used and which parameters are included (input) to
disguise the MK? Then how the PMK is generated independently inside server
and supplicant? What algorithm and parameters are used to pass the PMK to
authenticator (Access point)? Please tell me clearly because I am a newbie.
Which source codes include these operations, where should I look?

Thank you.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Devel mailing list