Registry JSON CSV exports
Theme

Choose how MSRBot.io looks on this device.

Auto (match system) Light mode Dark mode

Preference is stored in this browser only.

IETF RFC 9678
[ACTIVE]

Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA' FS)

Metadata

Publisher
IETF
Doc Type
Standard
Abstract
This document updates RFC 9048, "Improved Extensible Authentication Protocol Method for 3GPP Mobile Network Authentication and Key Agreement (EAP-AKA')", and its predecessor RFC 5448 with an optional extension providing ephemeral key exchange. The extension EAP-AKA' Forward Secrecy (EAP-AKA' FS), when negotiated, provides forward secrecy for the session keys generated as a part of the authentication run in EAP-AKA'. This prevents an attacker who has gained access to the long-term key from obtaining session keys established in the past. In addition, EAP-AKA' FS mitigates passive attacks (e.g., large-scale pervasive monitoring) against future sessions. This forces attackers to use active attacks instead.
Publication Date
2025-03-01
DOI
10.17487/RFC9678
Link
https://www.rfc-editor.org/info/rfc9678
Author(s)
J. Arkko, K. Norrman, J. Preuß Mattsson
Latest version of IETF RFC 9678

Document Suite — IETF RFC 9678

  • IETF RFC 9678 (2025-03-01)
    THIS DOC [ACTIVE] [LATEST VERSION]
Reference this Doc

Plain text (ISO 690 compliant)

Preview:
IETF RFC 9678, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA' FS). Available at https://doi.org/10.17487/RFC9678
Snippet:
IETF RFC 9678, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA' FS). Available at https://doi.org/10.17487/RFC9678

HTML (ISO 690 compliant)

Preview:
IETF RFC 9678, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA' FS). Available at https://doi.org/10.17487/RFC9678
Snippet:
<span class="citation"><cite>IETF RFC 9678</cite>, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA&#x27; FS). Available at <a href="https://doi.org/10.17487/RFC9678" target="_blank" rel="noopener">https://doi.org/10.17487/RFC9678</a></span>

SMPTE Icon SMPTE's HTML Pub

Preview:
IETF RFC 9678, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA' FS)
doi: 10.17487/RFC9678
url: https://doi.org/10.17487/RFC9678
Snippet:
<li>
<cite id="bib-rfc9678">IETF RFC 9678</cite>, Forward Secrecy Extension to the Improved Extensible Authentication Protocol Method for Authentication and Key Agreement (EAP-AKA&#x27; FS)
<span class="doi">10.17487/RFC9678</span>
</li>