http://www.rfc-editor.org/rfc/rfc5247.txt
RFC 5247: Extensible Authentication Protocol (EAP) Key Management Framework, B. Aboba, D. Simon, P. Eronen2008-08-01T23:00:00-00:00The Extensible Authentication Protocol (EAP), defined in RFC 3748, enables extensible network access authentication. This document specifies the EAP key hierarchy and provides a framework for the transport and usage of keying material and parameters generated by EAP authentication algorithms, known as "methods". It also provides a detailed system-level security analysis, describing the conditions under which the key management guidelines described in RFC 4962 can be satisfied. [STANDARDS-TRACK]