{
  "draft": "draft-harkins-emu-eap-pwd-14",
  "doc_id": "RFC5931",
  "title": "Extensible Authentication Protocol (EAP) Authentication Using Only a Password",
  "authors": [
    "D. Harkins",
    "G. Zorn"
  ],
  "format": [
    "TEXT",
    "HTML"
  ],
  "page_count": "40",
  "pub_status": "INFORMATIONAL",
  "status": "INFORMATIONAL",
  "source": "IETF - NON WORKING GROUP",
  "abstract": "This memo describes an Extensible Authentication Protocol (EAP) method, EAP-pwd, which uses a shared password for authentication.  The password may be a low-entropy one and may be drawn from some set of possible passwords, like a dictionary, which is available to an attacker.  The underlying key exchange is resistant to active attack, passive attack, and dictionary attack.  This document is not an Internet Standards Track specification; it is published for informational purposes.",
  "pub_date": "August 2010",
  "keywords": [
    "Password Authenticated Key Exchange",
    "Dictionary Attack",
    "Authentication EAP"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [
    "RFC8146"
  ],
  "see_also": [],
  "doi": "10.17487/RFC5931",
  "errata_url": "https://www.rfc-editor.org/errata/rfc5931"
}