Tunneled Authentication Options
Table C-9
Authentication Type
Tunneled
Authentication
PEAP
CHAP
EAP-GTC
X
MD5
MS CHAP
TTLS
EAP-FAST
X
Challenge Handshake Authentication Protocol (CHAP)
is one of the two main authentication protocols used to
verify the user name and password for PPP Internet
connections. CHAP is more secure than PAP because it
performs a three way handshake during the initial link
establishment between the home and remote machines.
It can also repeat the authentication anytime after the
link is established.
X
EAP-GTC is used during phase 2 of the authentication
process. This method uses a time-synchronized
hardware or software token generator, often in
conjunction with a user PIN, to create a one-time
password.
X
Message Digest-5 (MD5) is an authentication algorithm
developed by RSA. MD5 generates a 128-bit message
digest using a 128-bit key, IPSec truncates the message
digest to 96 bits.
X
Microsoft Challenge Handshake Authentication Protocol
(MS CHAP) is an implementation of the CHAP protocol
that Microsoft created to authenticate remote Windows
workstations. MS CHAP is identical to CHAP, except that
MS CHAP is based on the encryption and hashing
algorithms used by Windows networks, and the MS
CHAP response to a challenge is in a format optimized
for compatibility with Windows operating systems.
MK2290 RF Network Configuration C - 13
Description