PEAP label in PRF

Chitrang Srivastava chitrang.srivastava at
Wed Sep 14 08:04:27 CEST 2016


This is regarding seed label which is used in PRF(Pseudo random function)
to derive session keys.

     PEAPv0: - I
don't see any mention of label but look like it uses *client EAP encryption
? *Any official draft or RFC mentioned PEAPv0 uses this label ?
     PEAPv1:  *client
PEAP encryption*
     PEAPv2:  *client
EAP  encryption*

So on the *client *side the code should be something like

if(PEAP_version ==1)
   label is
*client PEAP encryption*
otherwise   // For version 0 and 2
  label is *client PEAP encryption*

This look OK? Why PEAPv2 uses old label ?

More information about the Freeradius-Users mailing list