{
  "draft": "draft-ietf-emu-eaptlscert-08",
  "doc_id": "RFC9191",
  "title": "Handling Large Certificates and Long Certificate Chains in TLS-Based EAP Methods",
  "authors": [
    "M. Sethi",
    "J. Preu\u00df Mattsson",
    "S. Turner"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "12",
  "pub_status": "INFORMATIONAL",
  "status": "INFORMATIONAL",
  "source": "EAP Method Update",
  "abstract": "The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides a standard mechanism for support of multiple authentication methods.  EAP-TLS and other TLS-based EAP methods are widely deployed and used for network access authentication.  Large certificates and long certificate chains combined with authenticators that drop an EAP session after only 40 - 50 round trips is a major deployment problem.  This document looks at this problem in detail and describes the potential solutions available.",
  "pub_date": "February 2022",
  "keywords": [
    "EAP-TLS",
    "X.509",
    "EAP",
    "authenticator",
    "Maximum Transmission Unit",
    "(MTU)"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC9191",
  "errata_url": null
}