Revision as of 08:01, 19 April 2023 edit 139.138.198.138 (talk) →Tunnel Extensible Authentication Protocol (TEAP) ← Previous edit		Revision as of 12:48, 25 June 2023 edit undo Kvng (talk \| contribs) Extended confirmed users, New page reviewers 116,060 edits m caps Next edit →
Line 131: {{Main\|IEEE 802.1X}} The encapsulation of EAP over [[IEEE 802]] is defined in [[IEEE 802.1X]] and known as "EAP over LANs" or EAPOL.<ref>{{cite IETF\|rfc=3748\|title=Extensible Authentication Protocol (EAP)\|section=3.3\|sectionname=EAP Usage Within IEEE 802}}</ref><ref>{{cite IETF\|rfc=3748\|title=Extensible Authentication Protocol (EAP)\|section=7.12\|sectionname=Link Layer}}</ref><ref>IEEE 802.1X-2001, § 7</ref> EAPOL was originally designed for [[IEEE 802.3]] ~~ethernet~~Ethernet in 802.1X-2001, but was clarified to suit other IEEE 802 LAN technologies such as [[IEEE 802.11]] wireless and [[Fiber Distributed Data Interface]] (ANSI X3T9.5/X3T12, adopted as ISO 9314) in 802.1X-2004.<ref>IEEE 802.1X-2004, § 3.2.2</ref> The EAPOL protocol was also modified for use with [[IEEE 802.1AE]] (MACsec) and [[IEEE 802.1#802.1AR\|IEEE 802.1AR]] (Initial Device Identity, IDevID) in 802.1X-2010.<ref>IEEE 802.1X-2010, § 5</ref> When EAP is invoked by an 802.1X enabled [[Network Access Server]] (NAS) device such as an [[IEEE 802.11i-2004]] Wireless Access Point (WAP), modern EAP methods can provide a secure authentication mechanism and negotiate a secure private key (Pair-wise Master Key, PMK) between the client and NAS which can then be used for a wireless encryption session utilizing [[Temporal Key Integrity Protocol\|TKIP]] or [[CCMP (cryptography)\|CCMP]] (based on [[Advanced Encryption Standard\|AES]]) encryption.

Extensible Authentication Protocol: Difference between revisions