Filter
Top Products
Dolphin® 7900 Series Mobile Computer User’s Guide 9 - 39
TTLS and PEAP bypassed the certificate issue by tunneling TLS, and thus eliminating the need for a certificate on the client side.
PEAP supports only EAP-compliant authentication protocols within the tunnel structure, and is rapidly becoming the most widely
supported of the EAP methods. TTLS supports pre-EAP authentication protocols within the tunnel structure, and should be used
in those circumstances when pre-EAP interior protocols are desirable.
LEAP is a pre-EAP, Cisco-proprietary protocol, with many of the features of EAP protocols. Cisco controls the ability of other
vendors to implement this protocol, so it should be selected for use only when limited vendor choice for client, access-point, and
server products is not a concern.
Differences Between Protocols
Security Feature MD5
Challenge
TLS TTLS PEAP LEAP
Client -side certificate required? No Yes No No No
Server-side certificate required? No Yes No Yes No
Dynamic WEP Re-keying No Yes Yes Yes Yes
Mutual or One-way Authentication? One-way Mutual Mutual Mutual Mutual
Support of non-EAP protocols within
a secure tunnel?
N/A N/A Yes No N/A
Relative Deployment Complexity Simple Difficult Moderate Moderate Moderate
Relative Security Poorest Highest High High High