Table of Contents
Advertisement
B - 14 MK4000 MicroKiosk for CE .NET 5.0 Product Reference Guide
Tunneled Authentication Options (Continued)
Table B-9
Tunneled
Authentication
MS CHAP v2
PAP
TLS
Authentication Type
PEAP
TTLS
EAP-FAST
X
X
X
X
X
X
Description
Microsoft Challenge Handshake Authentication Protocol
version 2 (MS CHAP v2) is a password-based,
challenge-response, mutual authentication protocol that
uses the industry-standard Message Digest 4 (MD4) and
Data Encryption Standard (DES) algorithms to encrypt
responses. The authenticating server challenges the
access client and the access client challenges the
authenticating server. If either challenge is not correctly
answered, the connection is rejected. MS CHAP v2 was
originally designed by Microsoft as a PPP authentication
protocol to provide better protection for dial-up and
virtual private network (VPN) connections. With
Windows XP SP1, Windows XP SP2, Windows Server
2003, and Windows 2000 SP4, MS CHAP v2 is also an
EAP type.
Password Authentication Protocol (PAP) has two
variations: PAP and CHAP PAP. It verifies a user name
and password for PPP Internet connections, but it is not
as secure as CHAP, since it works only to establish the
initial link. PAP is also more vulnerable to attack because
it sends authentication packets throughout the network.
Nevertheless, PAP is more commonly used than CHAP
to log in to a remote host like an Internet service
provider.
EAP TLS is used during phase 2 of the authentication
process. This method uses a user certificate to
authenticate.
- Quick Links:
- Configurations
- Connectivity Options
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
