LEAP (Lightweight Extensible Authentication Protocol)

LEAP uses dynamic Wired Equivalent Privacy (WEP) keys that are changed with more frequent authentications between a client and a RADIUS server. WEP keys are less likely to be cracked -- and less long-lived if cracked -- due to this frequency.

However, LEAP's reliance upon a version of the MS-CHAP protocol means that user credentials may not be adequately protected. More stringent authentication protocols employ a salt (a random string of data that modifies a password hash).

Cisco, Microsoft and RSA Security are promoting a more secure version of EAP, Protected Extensible Authentication Protocol (PEAP), as an Internet standard. That protocol is expected to displace LEAP.

Read more about LEAP (Lightweight Extensible Authentication Protocol): - TechRepublic's Ultimate Wireless Security Guide includes an introduction to LEAP. - Lisa Phifer differentiates between PEAP and LEAP.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Sybase offers enterprise-ready iPhone solution on the App Store iAnywhere Mobile Office provides iPhone users with an enterprise solution supporting email, calendar, tasks and contacts with corporate directory... Two-factor authentication: Mobile security at your fingertips A two-factor authentication approach that includes fingerprint recognition is the key to really effective security for essentially all mobile... RIM makes hostile takeover bid for encryption vendor Certicom Control over BlackBerry's encryption technology is the object of RIM's bid for Certicom.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary CCMP  (SearchMobileComputing.com) Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP) is an encryption protocol that forms part of the 802.11i standard... drive-by spamming  (SearchMobileComputing.com)