The Extensible Authentication Protocol (EAP) provides support for multiple authentication methods. This document defines the EAP-NOOB authentication method for nimble out-of-band (OOB) authentication and key derivation. The EAP method is intended for bootstrapping all kinds of Internet-of-Things (IoT) devices that have no preconfigured authentication credentials. The method makes use of a user-assisted, one-directional, out-of-band (OOB) message between the peer device and authentication server to authenticate the in-band key exchange. The device must have a nonnetwork input or output interface, such as a display, microphone, speaker, or blinking light, that can send or receive dynamically generated messages of tens of bytes in length.
Original languageEnglish
TypeRFC Proposed Standard
PublisherInternet Engineering Task Force
Number of pages51
Publication statusPublished - Dec 2021
MoE publication typeNot Eligible

Publication series

NameRequest for Comments
PublisherInternet Engineering Task Force (IETF)
No.RFC 9140


Dive into the research topics of 'Nimble Out-of-Band Authentication for EAP (EAP-NOOB)'. Together they form a unique fingerprint.

Cite this