Confusion about 802.1x authentication methods

As I read through all materials related to 802.1x, many articles mentioned that "to deploy 802.1x, you'll need to select an authentication method, such as EAP-MD5 and EAP-TLS" (Lisa Phifer) and "802.1x with EAP support multiple authentication methods, such as token cards, Kerberors, one-time passwords, certificates, and public key authentication." (Jim Geier). They are all talking about the "authentication methods" supported by 802.1x and EAP.

It's not clear to me: Does that mean when deploying 802.1x, we can use EAP-MD5, EAP-TLs, token cards, Kerberors, one-time passwords, or certificates as the authentication method? (Some others even call these "authentication types" and make it even more confusing). Or do EAP-MD5, EAP-TLs, etc. and token cards, Kerberors, etc. actually play different roles in 802.1x and EAP infrastructure?

Download this free guide

PDF: How to Choose the Best Identity Access Management Software

Since mobility is a vital element in almost every modern IT shop, today's comprehensive IAM platforms should feature capabilities enabled by a mobile environment. Save this PDF to help prioritize which capabilities your business needs in IAM software.

Corporate E-mail Address:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Please help me to clarify this issue and thanks in advance.

The 802.1x framework utilizes Extensible Authentication Protocol (EAP) as a way to authenticate and control traffic on protected wired and wireless networks. 802.1x is just a framework that various products support. When using this framework, you can use EAP for authentication of the traffic. Within EAP, you can choose one of the various authentication methods (tokens, PKI, etc.) Check out the following links for more information:

EAP - http://www.ietf.org/rfc/rfc2284.txt
802.1X - http://standards.ieee.org/getieee802/download/802.1X-2001.pdf

Related Resources

Comprehensive Mobile-Cloud Enterprise Security –MobileIron
Enterprise Mobile Security by the Numbers –SearchSecurity.com
Enterprise Mobility Adoption and Security Considerations –SearchSecurity.com
MobileIron and iOS: The Security Backbone for the Modern Enterprise –MobileIron

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Mobile Computing experts

View all Mobile Computing questions and answers

Related Resources

Dig Deeper on Enterprise mobile security

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.