Home > Mobile Computing Tips > Mobile Security > How do you authenticate in 802.1x?
Mobile Computing Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

MOBILE SECURITY

How do you authenticate in 802.1x?


Kevin Beaver
10.08.2003
Rating: -2.60- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


Are you confused about authentication methods within 802.1x? If so, you're not alone. For example, one SearchMobileComputing.com reader sent in a question about the various authentication methods. He noted that there are references to many different authentication methods, but does that mean you can use any? One or more? And what difference does it make?

Here's the question, edited just a bit:

"When deploying 802.1x, can we use EAP-MD5, EAP-TLs, token cards, Kerberos, one-time passwords, or certificates as the authentication method? (Some others even call these "authentication types" and that makes it even more confusing).

"Or do EAP-MD5, EAP-TLs, etc. and token cards, Kerberos, etc. actually play different roles in 802.1x and EAP infrastructure? Please help me to clarify this issue and thanks in advance."

SearchMobileComputing.com mobile security expert Kevin Beaver replied on September 25.

"The 802.1x framework utilizes Extensible Authentication Protocol (EAP) as a way to authenticate and control traffic on protected wired and wireless networks. 802.1x is just a framework that various products support. When using this framework, you can use EAP for authentication of the traffic. Within EAP, you can choose one of the various authentication methods (tokens, PKI, etc.). Check out the following links for more information:
EAP
802.1X"

Ed. Note: The first of these references states the following, in part:

"After the link establishment phase is complete, the authenticator sends one or more requests to authenticate the peer. The request has a type field to indicate what is being requested. Examples of request types include identity, MD5-challenge, one-time passwords, generic token card, etc. The MD5-challenge type corresponds closely to the CHAP authentication protocol.

Typically, the authenticator will send an initial identity request followed by one or more requests for authentication information. However, an initial identity request is not required, and may be bypassed in cases where the identity is presumed (leased lines, dedicated dial-ups, etc.)."

Rate this Tip
To rate tips, you must be a member of SearchMobileComputing.com.
Register now to start rating these tips. Log in if you are already a member.




Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED CONTENT
Mobile Device Security
Fingerprint recognition and mobile security
Traditional security threats coming soon to mobile device near you
Securing your Windows Mobile devices
Mobile security: Protecting your data, not just your devices
Prevent mobile malware: Learn how to protect your enterprise and devices
Podcast: The truth about network security and mobile device access
Protecting data on your BlackBerry
Going green: Recycling and energy saving tips for mobile devices -- podcast
New challenges in mobile device discovery
Quiz: Mobile Device Security -- Who else can hear me now?
Mobile Device Security Research

Security
Wireless security
RIM announces overhauled Enterprise Server
New products, standards help boost wireless security
Safe computing in public hot spots
Wireless security and privacy: Best practices and design techniques
Don't be fooled by the Java sandbox
Nonpareils of mobile security info: Intel's Wireless Security Resource Center
Symbol upgrades to meet new Visa security standards
Centralized PDA virus protection released
WEP vulnerabilities -- wired equivalent privacy?

Mobile Security
Mobile security threats
Two-factor authentication: Mobile security at your fingertips
Securing your Windows Mobile devices
In-the-cloud defenses for mobile malware
On-device defenses for mobile malware
Is malware coming to a smartphone near you?
Protecting data on your BlackBerry
Defining your mobile security policy
Government regulations and mobile security policies
Symbian: Protect your data, not just your device

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
mobile VPN  (SearchMobileComputing.com)
real-time location system (RTLS)  (SearchMobileComputing.com)
screaming cell phone  (SearchMobileComputing.com)
SMiShing  (SearchMobileComputing.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Mobile Computing Security - Device Security, Mobile Authentication, Mobile Threats

Notebook Deals at Notebook Review
HomeNewsTopicsITKnowledge ExchangeTipsMultimediaWhite PapersProducts
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts