Cisco Offers New WLAN Security Protocol | eWeek
Cybersecurity
SHARE
Facebook X Pinterest WhatsApp

Cisco Offers New WLAN Security Protocol

Written By
Dennis Fisher
Dennis Fisher
Apr 14, 2004
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

Cisco Systems Inc. on Tuesday released a new protocol for authentication in an effort to help protect customers from security deficiencies in existing protocols, chiefly one developed years ago by Cisco.

Known as EAP-FAST (Extensible Authentication Protocol-Flexible Authentication via Secure Tunneling), the new protocol differs from Ciscos LEAP (Lightweight Extensible Authentication Protocol) in that it doesnt use digital certificates for authentication. Instead, EAP-FAST uses protected access credentials to establish an authenticated tunnel between a client and a server. Once the tunnel is in place, the client sends a username and password to the server to identify and authenticate itself.

This system is designed to guard against a variety of common attacks during the authentication process, including dictionary attacks and man-in-the-middle attacks, which are commonly used against networks employing LEAP.

LEAP is used mainly to authenticate users on wireless LANs, where the wireless access point serves as the RADIUS server.

Cisco, based in San Jose, Calif., has had EAP-FAST in development for some time and it has submitted the protocol to the Internet Engineering Task Force as an Internet-Draft. The company was spurred to make the protocol available now by the impending release of a tool for attacking EAP-protected networks. The tool, called Asleap, recovers weak LEAP passwords by performing a dictionary attack against them. This involves simply reading through a massive file of common words and trying them as the password.

The tools author, Joshua Wright, first discussed the problems with LEAP and his development of Asleap in a presentation at the Def Con 11 hacker conference last summer. Since then, he has refined the tool quite a bit.

In his documentation for Asleap, Wright says that Cisco asked him to delay the release of the tool until the company could finish testing and release EAP-FAST. He agreed and says he released Asleap last week in order to motivate Cisco customers to migrate away from LEAP.

/zimages/3/28571.gifCheck outeWEEK.coms Security Centerat http://security.eweek.com for security news, views and analysis.
Be sure to add our eWEEK.com security news feed to your RSS newsreader or My Yahoo page:http://us.i1.yimg.com/us.yimg.com/i/us/my/addtomyyahoo2.gif
Dennis Fisher
eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

facebook
linkedin
youtube
rss
x

Company

About us Contact us Advertise with us

Categories

Latest News Resources Artificial Intelligence Video Big Data & Analytics Cloud Networking

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information