| 翻訳と辞書 |
| Lightweight Extensible Authentication Protocol : ウィキペディア英語版 |
Lightweight Extensible Authentication Protocol
The Lightweight Extensible Authentication Protocol (LEAP) is a proprietary wireless LAN authentication method developed by Cisco Systems. Important features of LEAP are dynamic WEP keys and mutual authentication (between a wireless client and a RADIUS server). LEAP allows for clients to reauthenticate frequently; upon each successful authentication, the clients acquire a new WEP key (with the hope that the WEP keys don't live long enough to be cracked). LEAP may be configured to use TKIP instead of dynamic WEP.
Some 3rd party vendors also support LEAP through the Cisco Compatible Extensions Program.〔(【引用サイトリンク】url= http://www.cisco.com/web/partners/pr46/pr147/partners_pgm_concept_home.html )〕
== Security considerations ==
Cisco LEAP, similar to WEP, has had well-known security weaknesses since 2003 involving offline password cracking.〔(【引用サイトリンク】url=http://xforce.iss.net/xforce/xfdb/12804 )〕 LEAP uses a modified version of MS-CHAP, an authentication protocol in which user credentials are not strongly protected. Stronger authentication protocols employ a salt to strengthen the credentials against eavesdropping during the authentication process. Cisco's response to the weaknesses of LEAP suggests that network administrators either force users to have stronger, more complicated passwords or move to another authentication protocol also developed by Cisco, EAP-FAST, to ensure security.〔(【引用サイトリンク】url=http://www.cisco.com/warp/public/707/cisco-sn-20030802-leap.shtml )〕 Automated tools like ASLEAP demonstrate the simplicity of getting unauthorized access in networks protected by LEAP implementations.〔(【引用サイトリンク】url= http://asleap.sourceforge.net/ )〕
抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』
■ウィキペディアで「Lightweight Extensible Authentication Protocol」の詳細全文を読む
スポンサード リンク
| 翻訳と辞書 : 翻訳のためのインターネットリソース |
Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.
|
|