Sending EAP Identity Encrypted

alan furlong alan250985 at gmail.com
Thu Sep 22 09:47:27 PDT 2016


Just to add more info to this. I'm only looking for encryption of
username part of NAI, and there is no outer tunnel possibility to
protect the identity in the scenario I'm dealing with.

Thanks,
-Alan

On Thu, Sep 22, 2016 at 9:06 AM, alan furlong <alan250985 at gmail.com> wrote:
> Hi,
>
> Is it possible to configure wpa_supplicant to send EAP Identity
> encrypted for privacy reasons?
>
> This makes an assumption that the RADIUS on the other end is able to
> decrypt it. Both EAP Peer and Authentication server could either use
> same shared secret, or client can encrypt using public key of the
> authentication server and server decrypting it using the private key.
>
> Thanks,
> -Alan



More information about the Hostap mailing list