Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
701
Views
4
Helpful
4
Replies

What does WEP/EAP/LEAP encrypt ?

Go to solution
randyclark
Level 1
Level 1

‎03-13-2003 12:26 PM - edited ‎07-04-2021 08:34 AM

Does EAP/LEAP encrypt the wireless authentication to the AP or the entire session? In other words after you are authenticated is the data being sent through the air encrypted? i.e. Web traffic, e-mail

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ndoshi
Cisco Employee
Cisco Employee

‎03-13-2003 01:14 PM

Hi

Leap / EAP is framework of protocol between Users , Radius Server and AP .

It authenitcates users via Radius server .

It generates DYNAMIC KEY to encrypt the ALL DATA traffic .

so you can have centralised database and dynamic Key . You don't have to

manage the key in this process .

So all traffic is encrypted between AP and client .

http://www.cisco.com/en/US/partner/products/hw/wireless/ps4570/products_white_paper09186a00800b469f.shtml

Above white paper explains in detail

http://www.cisco.com/en/US/partner/products/hw/wireless/ps4570/prod_white_papers_list.html

Nilesh

View solution in original post

0 Helpful
4 Replies 4

Go to solution
tepatel
Cisco Employee
Cisco Employee

‎03-13-2003 12:44 PM

YES..All the data between Wireless Client and Access point will be encrypted.

So data between Wireless LAN devices will be encrypted. Visit

http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/a350w_ov.htm

Go to solution
ndoshi
Cisco Employee
Cisco Employee

‎03-13-2003 01:14 PM

Hi

Leap / EAP is framework of protocol between Users , Radius Server and AP .

It authenitcates users via Radius server .

It generates DYNAMIC KEY to encrypt the ALL DATA traffic .

so you can have centralised database and dynamic Key . You don't have to

manage the key in this process .

So all traffic is encrypted between AP and client .

http://www.cisco.com/en/US/partner/products/hw/wireless/ps4570/products_white_paper09186a00800b469f.shtml

Above white paper explains in detail

http://www.cisco.com/en/US/partner/products/hw/wireless/ps4570/prod_white_papers_list.html

Nilesh

0 Helpful

Go to solution
dladen
Level 1
Level 1
In response to ndoshi

‎03-20-2003 08:38 PM

On the client, if I am using LEAP, do I need to setup a encryption key? What is it used for? Is it dynamic like the unicast key provided from the RADUIS server? Does PEAP support the same dynamic environment that LEAP does.

Thanks,

Dan Laden

0 Helpful

Go to solution
aonibala
Level 1
Level 1
In response to dladen

‎03-21-2003 04:05 AM

If using LEAP, you need not to put the static WEP on the client. The WEP key fields are greyed out. EACH client will receive UNIQUE dynamic WEP key per session from the RADIUS. You can strengthen it further by rotating/limiting the key duration to let say 20 minutes. You can go extreme by turning TKIP on where you get UNIQUE key per PACKET: http://wlanresearch.com/LEAPVPN.htm

PEAP is similar to LEAP for the dynamic session key part. As for the rotating key and TKIP, LEAP is far better than anything else out there. It is truly a quantum leap :-)

Audie Onibala

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card