ZyXEL Communications ZyAIR B-500 User Manual
ZyAIR B-500 Wireless Access Point User’s Guide
F-2
Types of EAP Authentication
and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is implemented only by
Cisco.
Cisco.
LEAP
LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE802.1x.
For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and PEAP) use dynamic keys
for data encryption. They are often deployed in corporate environments, but for public deployment, a
simple user name and password pair is more practical. The following table is a comparison of the features
of five authentication types.
for data encryption. They are often deployed in corporate environments, but for public deployment, a
simple user name and password pair is more practical. The following table is a comparison of the features
of five authentication types.
Comparison of EAP Authentication Types
EAP-MD5
EAP-TLS
EAP-TTLS
PEAP
LEAP
Mutual
Authentication
Authentication
No Yes Yes Yes Yes
Certificate – Client
No Yes
Optional
Optional
No
Certificate – Server
No Yes Yes Yes No
Dynamic Key
Exchange
Exchange
No Yes Yes Yes Yes
Credential Integrity
None Strong Strong Strong
Moderate
Deployment
Difficulty
Difficulty
Easy
Hard Moderate Moderate Moderate
Client Identity
Protection
Protection
No No Yes Yes No