EAP, LEAP, PEAP and EAP-TLS and EAP-TTLS
EAP, LEAP, PEAP, and TTLS are competing protocols for securely transporting authentication data.
EAP
EAP (Extensible Authentication Protocol), defined in RFC 2284 — PPP Extensible Authentication Protocol (EAP), is the original 802.11 standard.
LEAP
LEAP (Lightweight Extensible Authentication Protocol) is a proprietary protocol which was developed by Cisco. Cisco is phasing out LEAP in favor of PEAP.
EAP-TLS
EAP-TLS (Extensible Authentication Protocol – Transport Layer Security) was created by Microsoft and accepted by the IETF as RFC 2716: PPP EAP TLS Authentication Protocol..
PEAP
PEAP (Protected Extensible Authentication Protocol) is a proprietary protocol which was developed by Microsoft, Cisco and RSA Security.
EAP-TTLS
Tunneled Transport Layer Security (EAP-TTLS) is a proprietary protocol which was developed by Funk Software and Certicom, and is supported by Agere Systems, Proxim, and Avaya.
EAP-TTLS is being considered by the IETF as a new standard.
For more information on EAP-TTLS, read the draft RFC EAP Tunneled TLS Authentication Protocol (EAP-TTLS).
PEAP, EAP-TTLS and a World without Certificates
PEAP and EAP-TTLS make it possible to authenticate wireless LAN clients without requiring them to have certificates.
PEAP and EAP-TTLS both utilize Transport Layer Security (TLS) to set up an end-to-end tunnel to transfer the user's credentials without having to use a certificate on the client.
EAP in 802.11i
EAP-TLS is the de facto standard for authentication in 802.11i wireless LANs.
The addition of EAP-TTLS to a wireless LAN protocol standard would enable wireless LANs to communicate securely without the use of encryption certificates.
|
|
Comments (1)
Leave a Reply
- 802.11i
802.11i is a draft IEEE standard for 802.11 wireless network security. 802.11i defines several new standards, and also relies heavily on many existing standards. New Protocols in 802.11i 802.11i introduced the RSN (Robust Secure Network) protocol for establishing secure communications. 802.11i also introduced the WRAP (Wireless Robust Authentication Protocol) and CCMP encryption protocols. WRAP and [...]...
- 802.1X
802.1X is an IEEE standard for EAP encapsulation over wired or wireless Ethernet. 802.1X is also known as EAPoL (EAP over LAN). This only makes sense when you recall that EAP was originally designed for use over PPP. 802.1X Roles 802.1X defines three roles: Name Description Supplicant User or client requesting authentication Authentication Server The [...]...
- RSN (Robust Secure Network)
RSN (Robust Secure Network) is a protocol for establishing secure communications over an 802.11 wireless network. RSN (Robust Secure Network) is part of the 802.11i standard. The RSN Protocol Process The RSN protocol functions as follows: The wireless NIC sends a Probe Request. The wireless access point sends a Probe Response with an RSN Information [...]...
- WiMAX
WiMAX stands for Worldwide Interoperability for Microwave Access. WiMAX is a broadband wireless point-to-multipoint specification from the IEEE 802.16 working group. Unlike wireless LAN technologies such as Wi-Fi (802.11), WiMAX is designed to operate as a wireless MAN (Metropolitan Area Network). This places WiMAX in the same class as the earlier 802.16 standards, MMDS and [...]...
- WPA (Wi-Fi Protected Access)
WPA (Wi-Fi Protected Access) is an interim standard by the WiFi Alliance to comply with the security protocol designed for wireless security. WPA will most likely be rolled into an eventual IEEE 802.11i standard. This protocol was an outcome of numerous severe flaws researchers had discovered in the preceding wireless security system called Wired Equivalent [...]...
After authentication by EAP-PEAP. How data will flow. Means what about encryption and packet frame and all.
please do reply