Questions on using EAP-AKA

Jouni Malinen j at w1.fi
Tue Dec 24 16:34:06 EST 2013


On Tue, Dec 24, 2013 at 12:01:26PM -0800, Ben Greear wrote:
> It seems that the SQN is expected to start at some known value, and increment
> for each connection attempt (from brief reading of RFC 4187).
> There is a protocol (AUTS) to re-sync if UE is out of sync.
> 
> Do you know if this is properly handled in wpa_supplicant?

Yes

> If so, does it really matter much what the SQN is initially configured to be?

For many testing cases, this does not really matter much unless you are
looking into testing EAP-AKA replay protection itself.
 
-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list