ZyXEL Communications ZyAIR B-500 Network Router User Manual


 
ZyAIR B-500 Wireless Access Point User’s Guide
F-2 Types of EAP Authentication
and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is implemented only by
Cisco.
LEAP
LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE802.1x.
For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and PEAP) use dynamic keys
for data encryption. They are often deployed in corporate environments, but for public deployment, a
simple user name and password pair is more practical. The following table is a comparison of the features
of five authentication types.
Comparison of EAP Authentication Types
EAP-MD5 EAP-TLS EAP-TTLS PEAP LEAP
Mutual
Authentication
No Yes Yes Yes Yes
Certificate – Client
No Yes Optional Optional No
Certificate – Server
No Yes Yes Yes No
Dynamic Key
Exchange
No Yes Yes Yes Yes
Credential Integrity
None Strong Strong Strong Moderate
Deployment
Difficulty
Easy Hard Moderate Moderate Moderate
Client Identity
Protection
No No Yes Yes No