in https, ssl encrypts user data. but in 802.11i, what is encrypted with eap-tls? is it pmk or something else? are ciphers for encryption negotiated between the client and the server in eap-tls?
Per the CWSPv2 Official Study guide: EAP-TLS is based on SSL and very similar to SSLv3. Each part of the session establishment dialog between the supplicant and authentication server is placed inside of an EAP-TLS packet.