Cisco LEAP (EAP Cisco Wireless) is a server and client 802.1x authentication via a user-
supplied logon password. When a wireless access point communicates with a Cisco
LEAP-enabled RADIUS (Cisco Secure Access Control Server (ACS) server), Cisco
LEAP provides access control through mutual authentication between client wireless
adapters and the wireless network and provides dynamic, individual user encryption keys
to help protect the privacy of transmitted data.
Cisco Rogue AP security feature
The Cisco Rogue AP feature provides security protection from an introduction of a rogue
access point that could mimic a legitimate access point on a network in order to extract
information about user credentials and authentication protocols which could compromise
security. This feature only works with Cisco's LEAP authentication. Standard 802.11
technology does not protect a network from the introduction of a rogue access point.
CKIP
Cisco Key Integrity Protocol (CKIP) is Cisco proprietary security protocol for encryption
in 802.11 media. CKIP uses the following features to improve 802.11 security in
infrastructure
mode:
●
Key Permutation
●
Message Integrity Check
●
Message Sequence Number
.