Extensible Authentication Protocol - Password Authenticated Exchange (EAP-PAX) 

(registry last updated 2006-12-13)

Registries included below:
- MAC ID Namespace
- DH Group ID Namespace
- Public Key ID Namespace
- ADE Type Namespace


Registry Name: MAC ID Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list 

Registry:
Value  Description                               Reference
-----  ----------------------------------------  ------------------
0x01   HMAC_SHA1_128                             [FIPS198][FIPS180]
0x02   HMAC_SHA256_128                           [FIPS180]


Registry Name: DH Group ID Namespace 
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value  Description                                  Reference
-----  -------------------------------------------  ---------
0x00   NONE   (if not performing a key update)
0x01   IANA DH Group 14  (IANA DH Group 14)         [RFC3526]
0x02   IANA DH Group 15  (IANA DH Group 15)         [RFC3526]
0x03   NIST ECC Group P-256                         [FIPS186]


Registry Name: Public Key ID Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value  Description                               Reference
-----  ----------------------------------------  ---------
0x00   NONE  (if using PAX_STD)
0x01   RSAES-OAEP                                [RFC3447]
0x02   RSA-PKCS1-V1_5                            [RFC3447]
0x03   El-Gamal Over NIST ECC Group P-256        [FIPS186]


Registry Name: ADE Type Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value   Description                              Reference
-----  ----------------------------------------  ---------
0x01   Vendor Specific                           [RFC4746]
0x02   Client Channel Binding Data               [RFC4746]
0x03   Server Channel Binding Data               [RFC4746]


References
----------
[FIPS180]    National Institute for Standards and Technology, "Secure
             Hash Standard", Federal Information Processing Standard
             180-2, August 2002.

[FIPS186]    National Institute for Standards and Technology,
             "Digital Signature Standard (DSS)", Federal Information
             Processing Standard 186, May 1994.

[FIPS198]    National Institute for Standards and Technology, "The
             Keyed-Hash Message Authentication Code (HMAC)", Federal
             Information Processing Standard 198, March 2002.

[RFC3447]    Jonsson, J. and B. Kaliski, "Public-Key Cryptography
             Standards (PKCS) #1: RSA Cryptography Specifications
             Version 2.1", RFC 3447, February 2003.

[RFC3526]    Kivinen, T. and M. Kojo, "More Modular Exponential
             (MODP) Diffie-Hellman groups for Internet Key Exchange
             (IKE)", RFC 3526, May 2003.

[RFC4746]    T. Clancy, W. Arbaugh,"EAP Password Authenticated Exchange"
             RFC 4746, November 2006.

(registry created 2006-10-03)

[]
