Revision as of 11:16, 26 June 2007 edit 192.118.76.131 (talk) →External links ← Previous edit		Revision as of 23:49, 11 October 2007 edit undo Porttikivi (talk \| contribs) 102 edits No edit summary Next edit →
Line 3: '''Protected [[Extensible Authentication Protocol]]''', '''Protected EAP''', or simply '''PEAP''' (pronounced ''"peep"''), is a method to securely transmit [[authentication]] information, including [[password]]s, over wired or [[wireless LAN\|wireless network]]s. It was jointly developed by [[Cisco Systems]], [[Microsoft]], and [[RSA Security]]. Note that '''PEAP''' is not an encryption protocol; as with other [[Extensible Authentication Protocol\|EAP]] types it only authenticates a client into a network. PEAP uses only [[server-side]] [[public key certificate]]s to authenticate clients by creating an [[encryption\|encrypted]] [[Secure Sockets Layer\|SSL]]/[[Transport Layer Security\|TLS]] [[Tunneling protocol\|tunnel]] between the client and the authentication server,. ~~which protects the~~The ensuing exchange of authentication information ~~from~~is ~~casual~~then encrypted and user credentials are safe from ~~inspection~~eavesdropping. PEAP is a joint proposal by [[Cisco Systems]], [[Microsoft]] and [[RSA Security]] as an open standard. It is already widely available in products, and provides very good security. It is similar in design to [[EAP-TTLS]], requiring only a server-side PKI certificate to create a secure TLS tunnel to protect user authentication.

Protected Extensible Authentication Protocol: Difference between revisions