Differences between protocols – Hand Held Products 7900 Series User Manual
Page 149
Dolphin® 7900 Series Mobile Computer User’s Guide
9 - 39
TTLS and PEAP bypassed the certificate issue by tunneling TLS, and thus eliminating the need for a certificate on the client side.
PEAP supports only EAP-compliant authentication protocols within the tunnel structure, and is rapidly becoming the most widely
supported of the EAP methods. TTLS supports pre-EAP authentication protocols within the tunnel structure, and should be used
in those circumstances when pre-EAP interior protocols are desirable.
LEAP is a pre-EAP, Cisco-proprietary protocol, with many of the features of EAP protocols. Cisco controls the ability of other
vendors to implement this protocol, so it should be selected for use only when limited vendor choice for client, access-point, and
server products is not a concern.
Differences Between Protocols
Security Feature
MD5
Challenge
TLS
TTLS
PEAP
LEAP
Client -side certificate required?
No
Yes
No
No
No
Server-side certificate required?
No
Yes
No
Yes
No
Dynamic WEP Re-keying
No
Yes
Yes
Yes
Yes
Mutual or One-way Authentication?
One-way
Mutual
Mutual
Mutual
Mutual
Support of non-EAP protocols within
a secure tunnel?
N/A
N/A
Yes
No
N/A
Relative Deployment Complexity
Simple
Difficult
Moderate
Moderate
Moderate
Relative Security
Poorest
Highest
High
High
High