Forum

CWSP study question

1 posts by 1 authors in: Forums > CWSP - Enterprise Wi-Fi Security
Last Post: July 22, 2010:

By jackman July 22, 2010

Reply

Scotty:

I think we need to clarify that statement and we need to put it on the errata. The type of mutual authentication we focus on in the book is the type that discriminates against the authentication server (AS). However, there are other forms of mutual authentication, academically speaking.

Bottom line is that an 802.1X/EAP transaction is used for authentication and it results in the derivation of a PMK (through these mutual exchanges). The process of generating the "seeding material" is mutually exclusive from any type of mutual "authentication". In other words, authtication happens based on whatever EAP type that is used; LEAP does not support mutual auth from the perspective we're interested in, but the other methods are at least capable of it.

Therefore, the EAP type is really mechanism that determines if mutual auth happens...or not. Then, upon successful completion of the EAP authentication, the PMK is derived. PMK = Seeding material for the dynamic encryption keying.

Does that help?

Page 1 of 1

1

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren

Working through the CWNP coursework and certifications helped not only to deepen my technical knowledge and understanding, but also it boosted my confidence. The hard work it took to earn my CWNE has been rewarding in so many ways.
-Ben

I want to commend you and all at CWNP for having a great organization. You really 'raise the bar' on knowing Wi-Fi well. I have learned a ton of information that is helping my job experience and personal career goals, because of my CWAP/CWDP/CWSP studies. Kudos to all at CWNP.
-Glenn