Problems with EAP-TTLS/EAP-TLS - One Step further

Carolin Latze carolin.latze at unifr.ch
Thu Nov 6 04:56:42 EST 2008



Carolin Latze wrote:
> Jouni Malinen wrote:
>   
>> On Fri, Oct 31, 2008 at 03:02:40PM +0100, Carolin Latze wrote:
>>
>>   
>>     
>>> Jouni, what is your certificate size? My keys are 1024 bit keys. I tried
>>> to set the fragment size to 2048, but that didn't help. I tested with
>>> 2.1.1 and 2.1.2. EAP-TLS works also with a fragmen_size of 1024 with the
>>> same certificates.
>>>     
>>>       
>> I'm using 2048-bit certificates and a CA hierarchy with two CAs. In
>> EAP-TLS, the server certificate message is 4372 bytes.
>>
>>   
>>     
> hm... ok... So I expect, that I have to search for something else. I
> will try with the newest wpa_supplicant and see what happens...
>
>   
Just a short note: EAP-TTLS/EAP-TLS works with wpa_supplicant-0.6.4 with
normal certificates. I will now go on debugging the engine integration
in phase2.

Regards
Carolin

-- 
Carolin Latze
Research Assistant			ICT Engineer

Department of Computer Science		Swisscom Strategy and Innovation
Boulevard de Pérolles 90		Ostermundigenstrasse 93
CH-1700 Fribourg      			CH-3006 Bern
	
phone: +41 26 300 83 30			+41 79 72 965 27
homepage: http://diuf.unifr.ch/people/latzec




More information about the HostAP mailing list