Currently, DiamEAP includes three EAP method plug-ins:

  • EAP-MD5
    • Password-based authentication method. MD5 hash function.
    • Offers minimal security.
  • EAP-TLS
    • Certificate based authentication method. Requirement for a client-side and a server-side certificates.
    • Strong authentication. Provides mutual authentication (client and Server).
    • Tested and evaluated with several OS: Windows XP/Vista/7, Linux Ubuntu, Android, iPad, iPhone and iPod touch.
    • Fully configurable plug-in. TLS parameters, certificates and plugin configuration.
  • EAP-TTLS (Developed and under test)
    Contact: Yuki Atsuya (atie[at]tera.ics.keio.ac.jp)
    • Supported authentication methods in phase 2: PAP, CHAP, MSCHAP, and MS-CHAPv2.
    • Tested successfully with several user terminals running on Windows XP/Vista/7, Linux Ubuntu, iPad, iPhone, iPod touch and Android.
    • Configurable plug-in: Configuration of Phase 1 TLS server side parameters and Phase 2 authentication methods parameters

Additional EAP Methods plug-ins can be implemented by following the sample plug-in provided with DiamEAP.

Also a documentation page will be published soon on how to implement new EAP method plug-in for DiamEAP.