Extensible Authentication Protocol - Password Authenticated Exchange (EAP-PAX) 

(registry last updated 2006-12-13)

Registries included below:
- MAC ID Namespace
- DH Group ID Namespace
- Public Key ID Namespace
- ADE Type Namespace


Registry Name: MAC ID Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list 

Registry:
Value       Description                               Reference
----------  ----------------------------------------  ------------------
0x01        HMAC_SHA1_128                             [FIPS198][FIPS180]
0x02        HMAC_SHA256_128                           [FIPS180]
0x03-0xFF   Unassigned


Registry Name: DH Group ID Namespace 
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value       Description                                  Reference
----------  -------------------------------------------  ---------
0x00        NONE   (if not performing a key update)
0x01        IANA DH Group 14  (IANA DH Group 14)         [RFC3526]
0x02        IANA DH Group 15  (IANA DH Group 15)         [RFC3526]
0x03        NIST ECC Group P-256                         [FIPS186]
0x04-0xFF   Unassigned


Registry Name: Public Key ID Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value       Description                                  Reference
----------  -------------------------------------------  ---------
0x00        NONE  (if using PAX_STD)
0x01        RSAES-OAEP                                   [RFC3447]
0x02        RSA-PKCS1-V1_5                               [RFC3447]
0x03        El-Gamal Over NIST ECC Group P-256           [FIPS186]
0x04-0xFF   Unassigned


Registry Name: ADE Type Namespace
Reference: [RFC4746]
Registration Procedure: IESG Expert via EAP WG mailing list

Registry:
Value       Description                               Reference
----------  ----------------------------------------  ---------
0x01        Vendor Specific                           [RFC4746]
0x02        Client Channel Binding Data               [RFC4746]
0x03        Server Channel Binding Data               [RFC4746]
0x04-0xFF   Unassigned


References
----------
[FIPS180]    National Institute for Standards and Technology, "Secure
             Hash Standard", Federal Information Processing Standard
             180-2, August 2002.

[FIPS186]    National Institute for Standards and Technology,
             "Digital Signature Standard (DSS)", Federal Information
             Processing Standard 186, May 1994.

[FIPS198]    National Institute for Standards and Technology, "The
             Keyed-Hash Message Authentication Code (HMAC)", Federal
             Information Processing Standard 198, March 2002.

[RFC3447]    Jonsson, J. and B. Kaliski, "Public-Key Cryptography
             Standards (PKCS) #1: RSA Cryptography Specifications
             Version 2.1", RFC 3447, February 2003.

[RFC3526]    Kivinen, T. and M. Kojo, "More Modular Exponential
             (MODP) Diffie-Hellman groups for Internet Key Exchange
             (IKE)", RFC 3526, May 2003.

[RFC4746]    T. Clancy, W. Arbaugh,"EAP Password Authenticated Exchange"
             RFC 4746, November 2006.

(registry created 2006-10-03)

[]
