Re: Implementation of LEAP kind of Security Mechanism on HostAP


From: Jouni Malinen (jkmaline_at_cc.hut.fi)
Date: 2002-09-21 13:04:10 UTC



On Thu, Sep 19, 2002 at 09:56:49AM +0530, Manjunathan PY wrote:

> I am planning to implement Cisco's LEAP kind of Security Mechanism on
> latest version of HostAP driver.
>
> Now that 802.1x is implement in HostAP , is possible for me to add LEAP
> security mechanism with dynamic wep keys to HOSTAP,

With 802.1x support, there should not really be that much need for LEAP.. Full EAP allows multiple authentication methods and at least I would prefer using standard mechanism over proprietary solutions..

If you want to implement LEAP, it should be quite easy with the current hostapd implementation. I have only browsed quickly through LEAP description, so I haven't checked every detail. Anyway, it seems to be quite similar to IEEE 802.1X. hostapd has code for generic RADIUS message handling, so this could be used also with LEAP. In addition, keys are apparenly sent using similar mechanism (MS-MPPE-Send-Key attribute) so also that code can be reused.

-- 
Jouni Malinen                                            PGP id EFC895FA


This archive was generated by hypermail 2.1.4.