Draytek 550 用户手册

 

34

 Protected Extensible Authentication Protocol is a two-phase 

authentication like TLS. In the first phase the Authentication Server is 
authenticated to the Supplicant. Using TLS, a secure channel is 
established through which any other EAP-Type can be used to 
authenticate the Supplicant to the Authentication Server during the 
second phase. A certificate is only required at the Authentication 

. PEAP also supports identity hiding where the Authenticator 

is only aware of the anonymous username used to establish the TLS 
channel during the first phase but not the individual user authenticated 
during the second phase. 

  Name of wireless network. 

is an EAP-Type for authentication based upon X.509 certificates. 

Because it requires both the Supplicant and the Authentication 

 to have certificates, it provides explicit Mutual Authentication 

and is resilient to man-in-the-middle attacks. After successful 
authentication a secure TLS link is established to securely 
communicate a unique session key from the Authentication Server 
to the Authenticator. 

Wi-Fi Protected Access is a replacement security standard for WEP. It 
is a subset of the IEEE 802.11i standard being developed. WPA 
makes use of TKIP to deliver security superior to WEP. 802.1X access 
control is still employed. The Authentication Server provides the 
material for creating the keys.