EAP Flavors
LEAP
• Cisco proprietary
• Dynamic WEP
• Has been broken. Not recommended for current deployment
EAP-TLS (EAP with Transport Layer Security)
• RFC 2716 - based on SSL
• Uses both client and server certificates
• Provides for mutual authentication
• Supported by Windows 2000, XP, 3rd party clients
EAP-PEAP
• Based on TLS
• Hides EAP exchange
• Requires both server and client authentication
• Developed by Microsoft, Cisco and RSA Security
Commenti su questo manuale