Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Cisco's free iPhone app grabs security feeds
•	Global warming research exposed after hack
•	Verizon suit a 'gamble worth taking' for AT&T, says IP lawyer
•	Google adding IPv6 to YouTube
•	Broadband stimulus grants delayed
•	Palm Pixi smartphones now just $25
•	Google goes for speed, security in Chrome OS
•	Hurricane Electric's IPv6 network doubles
•	The 5 best, and 5 worst, features of Google Chrome OS
•	Listen up: Rock and roll artifacts under surveillance
•	Why Chrome OS will fail -- big time
•	Microsoft Windows chief decries standards grandstanding
•	Al Gore: Supercomputers can reverse climate change
•	Atlantis astronauts get rude awakening
•	FAA fixes computer glitch, delays remain
•	More breaking news

Wireless/Mobile /

A closer look at LEAP

By - Steve Janss
Network World, 12/17/01

In short, here's how Lightweight Extensible Authentication Protocol works: The client looks for beacons from a wireless access point. Beacons are broadcast by the wireless access point on a regular basis, announcing its presence and facilitating communication. When a client hears a beacon, it sends out a Dynamic Host Configuration Protocol request along with its service set identifier. Cisco's wireless access point will send the request to the ACS server, which sends a challenge-response back to the wireless access point, which forwards it to the client. If the client doesn't hear the appropriate challenge-response, it disassociates itself from that wireless access point and looks for another wireless access point. If the challenge-response is good, then the client sends a hash of the user's password based upon values stored in the client and the authentication server.

Once the client and the server have mutually authenticated one another, the session begins. If the association is lost, both are deauthenticated, and must repeat the process. The good thing is that this process is automatic. Although you can set the ACS server to reauthenticate as often as once every second, once per hour is more reasonable, and still ensures a high degree of security. If overhead is not a problem and your security concerns are substantial, you might find 60-second intervals quite reasonable.

Back to the main review

RELATED LINKS

Janss is the president of Jansys Information Systems, a consulting firm specializing in IS technologies for small businesses. He can be reached at bizcom@jansys.com.

Wireless LAN security
The IEEE 802.11b Task Group I is working on a new standard that provides authentication and encryption for secure wireless networking. In the meantime, proprietary products that plug the holes in 802.11b security may be your best bet.

How we did it
Our testing methods ecplained.

IEEE is working on new standard
The scope of IEEE's 802.11b Task Group I is "to enhance the 802.11 Medium Access Control to enhance security and authentication mechanisms."

WEP's fatal flaw exposed
Wired Equivalent Privacy vulnerabilities came to light more than a year ago in October 2000.

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.

Click Here

alt text

Click Here

HOME

RESEARCH CENTERS

NEWS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.

Copyright, 1994-2006 Network World, Inc. All rights reserved.