<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.2.3) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-shang-agent-network-admission-01" category="info" submissionType="IETF" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="Agent Network Admission">Use Cases and Requirements for Network Admission of AI Agent Instances</title>
    <seriesInfo name="Internet-Draft" value="draft-shang-agent-network-admission-01"/>
    <author initials="C." surname="Shang" fullname="Chao Shang">
      <organization>Huawei</organization>
      <address>
        <email>chao.shang@huawei.com</email>
      </address>
    </author>
    <author initials="W." surname="Jiang" fullname="Weiyu Jiang">
      <organization>Huawei</organization>
      <address>
        <email>jiangweiyu1@huawei.com</email>
      </address>
    </author>
    <author initials="X." surname="Liang" fullname="Liang Xia">
      <organization>Huawei</organization>
      <address>
        <email>frank.xialiang@huawei.com</email>
      </address>
    </author>
    <author initials="B." surname="Wang" fullname="Bizhu Wang">
      <organization>Beijing University of Posts and Telecommunications</organization>
      <address>
        <email>wangbizhu_7@bupt.edu.cn</email>
      </address>
    </author>
    <author initials="M." surname="Sun" fullname="Mengying Sun">
      <organization>Beijing University of Posts and Telecommunications</organization>
      <address>
        <email>smy_bupt@bupt.edu.cn</email>
      </address>
    </author>
    <date year="2026" month="July" day="06"/>
    <area>Security</area>
    <workgroup>Individual Submission</workgroup>
    <keyword>AI Agent</keyword>
    <keyword>Network Admission</keyword>
    <keyword>Workload Identity</keyword>
    <keyword>Authentication</keyword>
    <keyword>Agent Instance</keyword>
    <abstract>
      <?line 62?>

<t>Artificial intelligence (AI) agents increasingly access enterprise
resources, external models, tools, and other agents through managed
networks.  Application-layer authentication
can authenticate an agent to a cooperating service, but it cannot by itself
provide complete network admission control.  In particular, application
proofs are normally verified only after network reachability exists, cannot
be consumed consistently by heterogeneous or legacy services, and do not
reliably identify which Agent Instance originated traffic when multiple
Agents share one host,
IP address, or egress gateway.</t>
      <t>This document describes operational use cases, the resulting problem
statement, and requirements for network admission of AI Agent Instances.  It
focuses on establishing a verifiable and time-bounded binding among an
Agent Instance, its credential key, optional runtime evidence, and a Network
Context on which the network can enforce reachability policy.  This document
does not define a new Agent-ID format, authentication protocol, OAuth grant,
or routing extension.</t>
    </abstract>
  </front>
  <middle>
    <?line 83?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>AI agents increasingly perform enterprise tasks without continuous human
supervision.  They retrieve internal documents, query databases, invoke
Model Context Protocol (MCP) servers and Web APIs, call external models,
communicate with other Agents,
and initiate long or multi-step workflows.  These activities ultimately
produce network connections that cross access networks, campus fabrics,
cloud virtual networks, security gateways, and Internet egress points.</t>
      <t>Application-layer mechanisms are necessary but are not sufficient for
complete Agent admission control.  Workload identity, mutual TLS, signed
HTTP messages, OAuth tokens, and proof-of-possession mechanisms can allow a
cooperating application peer to authenticate or authorize an Agent.  However,
these mechanisms normally operate only after the Agent already has a path to
the peer.  They also require the peer to understand and enforce the Agent
identity.  This assumption is difficult to satisfy across heterogeneous,
legacy, third-party, and non-HTTP services.</t>
      <t>For these reasons, part of the control needs to be performed at the network
admission layer.  The network is the common enforcement point traversed by
Agent traffic and can restrict reachability before a specific application
accepts a request.  Network enforcement does not replace application-layer
authorization; it provides an earlier and broader control boundary.</t>
      <t>Existing network admission mechanisms, including EAP <xref target="RFC3748"/> and
EAP-TLS <xref target="RFC5216"/> <xref target="RFC9190"/>, commonly authenticate a device, host, user,
or supplicant.  The resulting authorization is typically associated with a
physical port, wireless association, virtual interface, tunnel, or source
address.  This granularity is insufficient when several Agent Instances and
ordinary applications share the same host and IP address.</t>
      <t>The key new problem is therefore not merely how to assign an Agent-ID, but
how to authenticate a specific running Agent Instance and bind that result to
a Network Context that cannot be reused by another local process.  The
following use cases illustrate this problem.</t>
      <t>Existing mechanisms for workload identity, Agent authentication,
application authorization, runtime attestation, and Agent-aware networking
may provide credentials, authorization decisions, runtime evidence, or
Agent-related context.  This document does not replace those mechanisms.  It
focuses on the distinct deployment question of how an authenticated Agent
Instance and its relevant security attributes are bound to a Network Context
on which network reachability policy can be enforced, particularly when
multiple Agent Instances share a host, source address, or egress gateway.</t>
    </section>
    <section anchor="terminology">
      <name>Terminology</name>
      <t>The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and
"OPTIONAL" in this document are to be interpreted as described in BCP 14
<xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they appear in all capitals.</t>
      <dl>
        <dt>Agent:</dt>
        <dd>
          <t>Software that performs tasks on behalf of a Principal and may autonomously
invoke services, tools, or other agents.</t>
        </dd>
        <dt>Agent Instance:</dt>
        <dd>
          <t>A particular running instantiation of Agent software.  Two executions of
the same image or package are distinct Agent Instances unless continuity
is explicitly and securely preserved.</t>
        </dd>
        <dt>Agent Identifier (Agent-ID):</dt>
        <dd>
          <t>An identifier for an Agent Instance.  An Agent-ID is an assertion, not
proof, unless it is cryptographically bound to an authenticated key or
credential.</t>
        </dd>
        <dt>Agent Credential:</dt>
        <dd>
          <t>A certificate, signed token, workload credential, proof-of-possession
credential, or other verifiable object used to authenticate an Agent
Instance.</t>
        </dd>
        <dt>Agent Runtime:</dt>
        <dd>
          <t>The process, container, virtual machine, trusted execution environment, or
other execution context in which an Agent Instance runs.</t>
        </dd>
        <dt>Network Admission Function (NAF):</dt>
        <dd>
          <t>The function that verifies Agent admission evidence and decides whether an
Agent Binding may be installed.</t>
        </dd>
        <dt>Enforcement Point (EP):</dt>
        <dd>
          <t>A network entity that applies reachability or traffic policy based on an
Agent Binding.</t>
        </dd>
        <dt>Agent Binding:</dt>
        <dd>
          <t>A time-bounded association among an authenticated Agent Instance, the key
proved during admission, relevant security attributes, and an enforceable
Network Context.</t>
        </dd>
        <dt>Network Context:</dt>
        <dd>
          <t>Network-visible or network-controlled state that associates traffic with an
Agent Instance, such as a logical interface, virtual port, a trusted
namespace-associated interface, overlay identity, anti-spoofed source
address, security association,
tunnel, connection, or trusted per-Agent gateway context.</t>
        </dd>
        <dt>Principal:</dt>
        <dd>
          <t>The user, organization, service, or other entity on whose behalf an Agent
acts.</t>
        </dd>
      </dl>
    </section>
    <section anchor="use-cases">
      <name>Use Cases</name>
      <section anchor="enterprise-employee-device-with-multiple-agents">
        <name>Enterprise Employee Device with Multiple Agents</name>
        <t>An employee device may simultaneously run a personal assistant, a coding
Agent, an enterprise knowledge Agent, browser automation, and ordinary user
applications.  Some Agents may be approved by the enterprise, while others
may be downloaded by the user or created dynamically by an orchestration
framework.</t>
        <figure anchor="fig-multi-agent-host">
          <name>Multiple Agents sharing one admitted host</name>
          <artwork type="ascii-art"><![CDATA[
                    Enterprise Network
                           |
                    +------+------+
                    | Access Edge |
                    +------+------+
                           |
                    one device / one IP
                           |
          +----------------+----------------+
          |                                 |
   +------+-------+                  +------+-------+
   | Approved     |                  | Other Local  |
   | Agent A      |                  | Processes    |
   +--------------+                  +--------------+
   +--------------+                  +--------------+
   | Approved     |                  | Unapproved   |
   | Agent B      |                  | Agent C      |
   +--------------+                  +--------------+
]]></artwork>
        </figure>
        <t>Traditional device admission authenticates the device or user and then
associates policy with the shared attachment or source IP address.  It cannot
determine whether a subsequent connection was created by Agent A, Agent B,
Agent C, or an ordinary process.  Source ports, process names, and
self-asserted headers are controlled by the host and can be copied or reused.</t>
        <t>The enterprise needs to grant different reachability to each approved Agent
Instance while preventing the unapproved Agent from inheriting the device's
network permissions.</t>
      </section>
      <section anchor="enterprise-agent-accessing-internal-and-external-services">
        <name>Enterprise Agent Accessing Internal and External Services</name>
        <t>An enterprise Agent may retrieve data from an internal knowledge base, call
an external large-model service, and invoke a Software as a Service (SaaS)
API as part of one task.
The internal services may use different authentication technologies, and
some legacy services may not understand Agent identities at all.</t>
        <figure anchor="fig-enterprise-access">
          <name>Agent access across heterogeneous services</name>
          <artwork type="ascii-art"><![CDATA[
 +-----------+       +----------------+       +------------------+
 | Agent     |------>| Campus / Cloud |------>| Internal Service |
 | Instance  |       | Network        |       +------------------+
 |           |       | Enforcement    |------>| External Model   |
 +-----------+       +----------------+       +------------------+
                                            ->| SaaS / Web API   |
                                              +------------------+
]]></artwork>
        </figure>
        <t>Relying only on application-layer authentication requires every destination
to understand the Agent credential and to apply consistent policy.  This is
not realistic for heterogeneous and legacy services.  Moreover, the Agent
must already have network reachability before the remote service can reject
it.</t>
        <t>The network therefore needs to restrict which destinations the Agent can
reach based on an authenticated Agent Instance, while application-layer
authorization continues to restrict operations at cooperating services.</t>
      </section>
      <section anchor="multiple-agents-behind-a-shared-egress-gateway">
        <name>Multiple Agents behind a Shared Egress Gateway</name>
        <t>Enterprises commonly require Agents to access external services through a
security gateway, service mesh proxy, or controlled egress gateway.  Several
Agents may share one public IP address, a gateway connection pool, or even a
single multiplexed HTTP/2 or HTTP/3 connection toward the same external
service.</t>
        <figure anchor="fig-shared-gateway">
          <name>Multiple Agents behind one egress gateway</name>
          <artwork type="ascii-art"><![CDATA[
 Agent A ----+
 Agent B ----+--> Shared Egress Gateway --> External Service
 Agent C ----+
]]></artwork>
        </figure>
        <t>The external service may distinguish gateway-originated transport
connections, HTTP requests, or multiplexed streams.  However, a source port,
connection, request, or stream identifies only gateway-maintained forwarding
state and does not by itself provide authenticated identity of the
originating Agent Instance.</t>
        <t>The external service can authenticate the gateway, but gateway authentication
alone does not prove which Agent Instance caused a particular request.
Reliable attribution requires the gateway to receive or establish
trustworthy per-Agent context and to propagate that context using a protected
mechanism, such as an Agent-specific credential, token, or signed assertion.
If the gateway receives only an unprotected Agent-ID header, one Agent may
select another Agent's identity or policy context.</t>
        <t>The gateway therefore needs trustworthy per-Agent admission state and
isolation among Agent credentials, requests, connections, and policy
contexts.  When connections are pooled or multiplexed, the gateway must
preserve the binding between each request and the originating Agent Instance.
The local network also needs to prevent an Agent from bypassing the gateway
through another path.</t>
      </section>
      <section anchor="dynamically-created-and-short-lived-agents">
        <name>Dynamically Created and Short-Lived Agents</name>
        <t>An orchestration platform may create an Agent for a single task, create
sub-Agents, restart an Agent after failure, migrate it to another runtime, or
terminate it within minutes.  The host and its device-level admission session
may remain active for days.</t>
        <t>A device-level network session therefore outlives many Agent Instances.  A
new Agent execution must not automatically inherit the admission state of a
previous execution merely because it uses the same image, host, or IP
address.  Admission state needs an Agent-specific lifetime and must be
removed when the Agent terminates, migrates, or becomes non-compliant.</t>
      </section>
      <section anchor="agent-to-agent-collaboration-in-a-managed-network">
        <name>Agent-to-Agent Collaboration in a Managed Network</name>
        <t>A group of Agents may collaborate on one enterprise task.  For example, a
planning Agent invokes a retrieval Agent, which then invokes a data-analysis
Agent.  The Agents may run on the same host, on different enterprise hosts,
or across branch and cloud networks.</t>
        <t>The network may need to permit only an approved collaboration graph and deny
unrelated Agent-to-Agent reachability.  Device identity is too coarse when
multiple Agents share an endpoint, and application authentication alone does
not stop unauthorized network scanning, connection attempts, or bypass paths
before the application protocol is reached.</t>
      </section>
    </section>
    <section anchor="problem-statement">
      <name>Problem Statement</name>
      <section anchor="network-enforcement-is-required-but-lacks-agent-granularity">
        <name>Network Enforcement Is Required but Lacks Agent Granularity</name>
        <t>Application-layer authentication answers whether a cooperating service
accepts an Agent credential.  Network admission answers whether an Agent
Instance should receive reachability to a destination or network segment.
These are complementary controls.</t>
        <t>Application-layer mechanisms cannot fully provide network admission because:</t>
        <ul spacing="normal">
          <li>
            <t>they are usually evaluated only after a network path is available;</t>
          </li>
          <li>
            <t>they require every destination to understand the Agent identity;</t>
          </li>
          <li>
            <t>they cannot consistently cover legacy, third-party, and non-HTTP services;</t>
          </li>
          <li>
            <t>they do not prevent connection attempts, scanning, or bypass paths; and</t>
          </li>
          <li>
            <t>their result is not automatically available to switches, virtual switches,
routers, or security gateways that enforce reachability.</t>
          </li>
        </ul>
        <t>Network-layer enforcement is therefore needed as a common pre-service control
point.  However, existing network admission commonly associates identity
with a device, user, interface, tunnel, or IP address rather than a specific
Agent Instance.</t>
      </section>
      <section anchor="one-ip-address-can-represent-multiple-security-subjects">
        <name>One IP Address Can Represent Multiple Security Subjects</name>
        <t>A single IP address may simultaneously carry traffic from multiple approved
Agents, unapproved Agents, ordinary applications, and the user.  Therefore:</t>
        <artwork type="ascii-art"><![CDATA[
       one source IP address
               |
       +-------+-------+-------+
       |               |       |
   Agent A         Agent B   Other Process
]]></artwork>
        <t>The following implications hold:</t>
        <ul spacing="normal">
          <li>
            <t>successful device authentication does not authenticate every Agent;</t>
          </li>
          <li>
            <t>a source IP address is not an Agent identity;</t>
          </li>
          <li>
            <t>a transport source port is not a stable or trustworthy Agent identity;</t>
          </li>
          <li>
            <t>an Agent-ID in a host-controlled header is not sufficient proof; and</t>
          </li>
          <li>
            <t>application credentials do not by themselves bind all surrounding traffic
to the process that owns the credential.</t>
          </li>
        </ul>
        <t>Different admission policies for multiple Agents sharing one IP address
therefore require an additional trusted per-Agent Network Context.</t>
      </section>
      <section anchor="agent-identity-does-not-automatically-provide-traffic-attribution">
        <name>Agent Identity Does Not Automatically Provide Traffic Attribution</name>
        <t>Existing Agent identity and workload identity work can define who the Agent
is and how it proves possession of a credential key.  Existing OAuth work can
define what the Agent is authorized to do at a Resource Server.  Existing
attestation work can provide evidence about the runtime.</t>
        <t>None of these functions alone establishes which packets, connections, or
flows at a local network EP belong to the authenticated Agent Instance.  The
missing function is a verifiable binding:</t>
        <artwork type="ascii-art"><![CDATA[
 Authenticated Agent Instance
              +
 Credential-Key Possession
              +
 Optional Runtime Evidence
              +
 Enforceable Network Context
              =
       Agent Binding
]]></artwork>
        <t>The Network Context must be controlled or protected such that another local
process cannot simply reuse it.  Examples may include a per-Agent namespace,
virtual port, tunnel, security association, anti-spoofed address, or trusted
gateway context.</t>
      </section>
      <section anchor="admission-must-precede-general-reachability">
        <name>Admission Must Precede General Reachability</name>
        <t>An Agent requires limited connectivity to identity, credential, attestation,
and remediation services in order to complete admission.  It should not
receive unrestricted enterprise or Internet reachability before that process
finishes.</t>
        <t>A deployment therefore needs a constrained pre-admission state and a
controlled transition to Agent-specific reachability after the Agent Binding
is installed.</t>
      </section>
      <section anchor="agent-lifecycle-and-network-lifecycle-are-different">
        <name>Agent Lifecycle and Network Lifecycle Are Different</name>
        <t>Agent Instances may be created, restarted, cloned, suspended, migrated, or
terminated independently of the host network session.  A static device or IP
binding can therefore become stale and may unintentionally authorize a new
Agent execution.</t>
        <t>Agent admission state must have an independent lifetime and explicit renewal,
revocation, migration, and termination behavior.</t>
      </section>
    </section>
    <section anchor="requirement-summary">
      <name>Requirement Summary</name>
      <t>Based on the preceding use cases and problem statement, an Agent network
admission architecture has the following core requirements.</t>
      <section anchor="agent-instance-authentication">
        <name>Agent Instance Authentication</name>
        <t>The architecture MUST authenticate a particular Agent Instance, or an
explicitly defined instance-continuity domain, using a credential bound to a
cryptographic key or equivalent proof mechanism.  The Agent Instance MUST
prove possession of that key with freshness protection.</t>
        <t>Authentication of only a user, device, host, image, Agent software class, or
orchestration platform MUST NOT be treated as authentication of every Agent
Instance running there.  Self-asserted identifiers, process names, source
ports, or unprotected application headers MUST NOT be sufficient for
admission.</t>
      </section>
      <section anchor="binding-identity-to-enforceable-traffic">
        <name>Binding Identity to Enforceable Traffic</name>
        <t>A successful authentication result MUST be bound to a Network Context on
which an EP can enforce policy.  The binding MUST identify which traffic is
covered and MUST be protected against reuse by another local process.</t>
        <t>When multiple Agents share a host, interface, source address, or gateway, the
deployment MUST provide a trusted means to distinguish their traffic.  A
source address MAY be used only when address ownership and anti-spoofing are
enforced at the relevant attachment.</t>
      </section>
      <section anchor="shared-gateway-attribution">
        <name>Shared-Gateway Attribution</name>
        <t>A gateway serving multiple Agents MUST authenticate, or receive authenticated
context for, each originating Agent Instance.  It MUST isolate per-Agent
credentials and policy state and prevent one Agent from selecting or reusing
another Agent's context.</t>
        <t>When connections are pooled or multiplexed, the gateway MUST preserve the
binding between each request and the originating Agent Instance.  Gateway
authentication alone MUST NOT be represented as proof of the originating
Agent unless that binding is securely preserved and conveyed to the remote
peer through a protected mechanism.</t>
      </section>
      <section anchor="admission-lifetime-and-revocation">
        <name>Admission, Lifetime, and Revocation</name>
        <t>Before admission completes, an Agent Instance SHOULD have only the minimum
connectivity required for identity, credential, attestation, remediation, and
admission services.  General reachability SHOULD be denied until an Agent
Binding is installed.</t>
        <t>Every Agent Binding MUST have a finite lifetime.  A restart, clone, or
migration MUST NOT automatically inherit an old binding unless continuity is
explicitly proven.  The deployment MUST support renewal and prompt removal of
the binding when the Agent terminates, its credential is revoked, its runtime
becomes non-compliant, its attachment changes, or policy requires withdrawal.</t>
      </section>
      <section anchor="non-bypassability-and-layered-authorization">
        <name>Non-Bypassability and Layered Authorization</name>
        <t>The topology and enforcement configuration MUST prevent Agent traffic from
bypassing the EP through alternate interfaces, direct underlay access,
unprotected gateways, or other paths.</t>
        <t>Successful network admission establishes authenticated and constrained
reachability; it MUST NOT imply unrestricted application authority.  The
Principal identity and Agent-ID MUST remain distinguishable, and an Agent
MUST NOT automatically inherit all reachability or authority of its
Principal.</t>
      </section>
      <section anchor="evidence-audit-and-privacy">
        <name>Evidence, Audit, and Privacy</name>
        <t>When runtime or platform evidence is used, it MUST be bound to the same Agent
Instance key and admission context.  The NAF and EP SHOULD record the Agent
Instance, verified credential, installed Network Context, and binding
lifecycle events.</t>
        <t>Deployments SHOULD minimize disclosure and retention of Principal identity,
Agent identifiers, and runtime measurements, and SHOULD use short-lived or
locally scoped identifiers where appropriate.</t>
      </section>
    </section>
    <section anchor="functional-model">
      <name>Functional Model</name>
      <figure anchor="fig-model">
        <name>Agent Instance network-admission model</name>
        <artwork type="ascii-art"><![CDATA[
+--------------------+       +-------------------------+
| Agent Instance     |       | Identity / Attestation  |
|                    |       | Services                |
| instance key       |       +------------+------------+
+---------+----------+                    |
          | admission proof               | validation data
          v                               v
+---------+-------------------------------------------+
| Network Admission Function                         |
| verifies credential, possession, freshness,       |
| optional runtime evidence, and policy              |
+--------------------------+--------------------------+
                           | install Agent Binding
                           v
+--------------------------+--------------------------+
| Network Enforcement Point                          |
| Agent-ID / key / attributes -> Network Context     |
+--------------------------+--------------------------+
                           |
                    admitted traffic
                           v
                    Network Resources
]]></artwork>
      </figure>
      <t>A deployment MAY distribute these functions across an endpoint component,
network device, controller, and gateway.  The security property depends on
the integrity of the complete path from the authenticated Agent key to the
Network Context, not on the physical location of one component.</t>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>The primary security failure is a false association between an authenticated
Agent-ID and traffic generated by another entity.  Implementations need to
protect both the cryptographic proof and the local mechanism that creates and
uses the Agent Binding.</t>
      <t>Bearer credentials are insufficient when they can be copied to another
process or host.  Proof-of-possession credentials reduce this risk only when
the private key is protected and the proof is bound to the admission session
and Network Context.</t>
      <t>Runtime attestation does not replace Agent Instance authentication.  Agent
Instance authentication does not by itself prove that the runtime is
trustworthy.  Deployments requiring both properties need an explicit binding
among the runtime evidence, Agent Instance key, and Network Context.</t>
      <t>A trusted gateway can preserve Agent attribution across a second connection,
but it becomes a high-value security boundary.  It needs per-Agent isolation,
protected binding state, anti-replay protection, and clear behavior when
either side of the communication is re-established.  Connection pooling and
HTTP/2 or HTTP/3 multiplexing must not cause requests from different Agent
Instances to inherit or reuse the wrong Agent context.</t>
    </section>
    <section anchor="privacy-considerations">
      <name>Privacy Considerations</name>
      <t>Agent admission can expose relationships among a Principal, an Agent
Instance, a device, a runtime, and its destinations.  Stable Agent-IDs may
permit tracking across tasks or administrative domains.  Deployments should
minimize identifier scope and retention, disclose only attributes required by
policy, and avoid unnecessary export of runtime evidence.</t>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document makes no requests of IANA.</t>
    </section>
    <section anchor="acknowledgements">
      <name>Acknowledgements</name>
      <t>The authors thank participants in the IETF Agent identity, WIMSE, RATS,
OAuth, and Agent-aware networking discussions whose work helped clarify the
boundary between application authentication and network admission.</t>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC2119" target="https://www.rfc-editor.org/info/rfc2119" xml:base="https://bib.ietf.org/public/rfc/bibxml/reference.RFC.2119.xml">
          <front>
            <title>Key words for use in RFCs to Indicate Requirement Levels</title>
            <author fullname="S. Bradner" initials="S." surname="Bradner"/>
            <date month="March" year="1997"/>
            <abstract>
              <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="2119"/>
          <seriesInfo name="DOI" value="10.17487/RFC2119"/>
        </reference>
        <reference anchor="RFC8174" target="https://www.rfc-editor.org/info/rfc8174" xml:base="https://bib.ietf.org/public/rfc/bibxml/reference.RFC.8174.xml">
          <front>
            <title>Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words</title>
            <author fullname="B. Leiba" initials="B." surname="Leiba"/>
            <date month="May" year="2017"/>
            <abstract>
              <t>RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="8174"/>
          <seriesInfo name="DOI" value="10.17487/RFC8174"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="RFC3748" target="https://www.rfc-editor.org/info/rfc3748" xml:base="https://bib.ietf.org/public/rfc/bibxml/reference.RFC.3748.xml">
          <front>
            <title>Extensible Authentication Protocol (EAP)</title>
            <author fullname="B. Aboba" initials="B." surname="Aboba"/>
            <author fullname="L. Blunk" initials="L." surname="Blunk"/>
            <author fullname="J. Vollbrecht" initials="J." surname="Vollbrecht"/>
            <author fullname="J. Carlson" initials="J." surname="Carlson"/>
            <author fullname="H. Levkowetz" initials="H." role="editor" surname="Levkowetz"/>
            <date month="June" year="2004"/>
            <abstract>
              <t>This document defines the Extensible Authentication Protocol (EAP), an authentication framework which supports multiple authentication methods. EAP typically runs directly over data link layers such as Point-to-Point Protocol (PPP) or IEEE 802, without requiring IP. EAP provides its own support for duplicate elimination and retransmission, but is reliant on lower layer ordering guarantees. Fragmentation is not supported within EAP itself; however, individual EAP methods may support this. This document obsoletes RFC 2284. A summary of the changes between this document and RFC 2284 is available in Appendix A. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="3748"/>
          <seriesInfo name="DOI" value="10.17487/RFC3748"/>
        </reference>
        <reference anchor="RFC5216" target="https://www.rfc-editor.org/info/rfc5216" xml:base="https://bib.ietf.org/public/rfc/bibxml/reference.RFC.5216.xml">
          <front>
            <title>The EAP-TLS Authentication Protocol</title>
            <author fullname="D. Simon" initials="D." surname="Simon"/>
            <author fullname="B. Aboba" initials="B." surname="Aboba"/>
            <author fullname="R. Hurst" initials="R." surname="Hurst"/>
            <date month="March" year="2008"/>
            <abstract>
              <t>The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides support for multiple authentication methods. Transport Layer Security (TLS) provides for mutual authentication, integrity-protected ciphersuite negotiation, and key exchange between two endpoints. This document defines EAP-TLS, which includes support for certificate-based mutual authentication and key derivation.</t>
              <t>This document obsoletes RFC 2716. A summary of the changes between this document and RFC 2716 is available in Appendix A. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5216"/>
          <seriesInfo name="DOI" value="10.17487/RFC5216"/>
        </reference>
        <reference anchor="RFC9190" target="https://www.rfc-editor.org/info/rfc9190" xml:base="https://bib.ietf.org/public/rfc/bibxml/reference.RFC.9190.xml">
          <front>
            <title>EAP-TLS 1.3: Using the Extensible Authentication Protocol with TLS 1.3</title>
            <author fullname="J. Preuß Mattsson" initials="J." surname="Preuß Mattsson"/>
            <author fullname="M. Sethi" initials="M." surname="Sethi"/>
            <date month="February" year="2022"/>
            <abstract>
              <t>The Extensible Authentication Protocol (EAP), defined in RFC 3748, provides a standard mechanism for support of multiple authentication methods. This document specifies the use of EAP-TLS with TLS 1.3 while remaining backwards compatible with existing implementations of EAP-TLS. TLS 1.3 provides significantly improved security and privacy, and reduced latency when compared to earlier versions of TLS. EAP-TLS with TLS 1.3 (EAP-TLS 1.3) further improves security and privacy by always providing forward secrecy, never disclosing the peer identity, and by mandating use of revocation checking when compared to EAP-TLS with earlier versions of TLS. This document also provides guidance on authentication, authorization, and resumption for EAP-TLS in general (regardless of the underlying TLS version used). This document updates RFC 5216.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9190"/>
          <seriesInfo name="DOI" value="10.17487/RFC9190"/>
        </reference>
      </references>
    </references>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
