Appendix B - Wireless Technology

EAP Authentication

EAP (Extensible Authentication Protocol) is an Enterprise authentication protocol that can be used in both a wired and wireless network environment. EAP requires the use of an 802.1x Authentication Server, also known as a Radius server. Although there are currently over 40 different EAP methods defined, the current internal Modero 802.11g wireless card and accompanying firmware only support the following EAP methods (listed from simplest to most complex):

EAP-LEAP (Cisco Light EAP)

EAP-FAST (Cisco Flexible Authentication via Secure Tunneling, a.k.a. LEAPv2)

The following use certificates:

EAP-PEAP (Protected EAP)

EAP-TTLS (Tunneled Transport Layer Security)

EAP-TLS(Transport Layer Security)

EAP requires the use of an 802.1x authentication server (also known as a Radius server). Sophisticated Access Points (such as Cisco) can use a built-in Radius server. The most common RADIUS servers used in wireless networks today are:

Microsoft Sever 2003

Juniper Odyssey (once called Funk Odyssey)

Meetinghouse AEGIS Server

DeviceScape RADIUS Server

Cisco Secure ACS

EAP characteristics

The following table outlines the differences among the various EAP Methods from most secure (at the top) to the least secure (at the bottom of the list):

EAP Method Characteristics

Method:

Credential Type:

Authentication:

Pros:

Cons:

 

 

 

 

 

EAP-TLS

• Certificates

• Certificate is based on a

• Highest

• Difficult to

 

 

two-way authentication

Security

deploy

 

 

 

 

 

EAP-TTLS

• Certificates

• Client authentication is

• High Security

• Moderately

 

• Fixed Passwords

done via password and

 

difficult to

 

certificates

 

deploy

 

One-time passwords

 

 

• Server authentication is

 

 

 

(tokens)

 

 

 

done via certificates

 

 

 

 

 

 

 

 

 

 

 

EAP-PEAP

• Certificates

• Client authentication is

• High Security

• Moderately

 

• Fixed Passwords

done via password and

 

difficult to

 

certificates

 

deploy

 

One-time passwords

 

 

• Server authentication is

 

 

 

(tokens)

 

 

 

done via certificates

 

 

 

 

 

 

 

 

 

 

 

EAP-LEAP

• Certificates

• Authentication is based on

• Easy

• Susceptible to

 

• Fixed Passwords

MS-CHAP and

deployment

dictionary

 

MS-CHAPv2

 

attacks

 

One-time passwords

 

 

authentication protocols

 

 

 

(tokens)

 

 

 

 

 

 

 

 

 

 

 

EAP-FAST

• Certificates

• N/A

• N/A

• N/A

 

• Fixed Passwords

 

 

 

 

One-time passwords

 

 

 

 

(tokens)

 

 

 

 

 

 

 

 

10" Modero Widescreen Touch Panels

209

 

 

Page 218 Page 220
Page 219
Image 219
AMX NXD-1000Vi manual EAP Authentication, EAP characteristics, EAP Method Characteristics
Page 218 Page 220

NXD-1000Vi specifications

The AMX NXD-1000Vi is a sophisticated touchpanel designed for a multitude of installation environments, ranging from corporate boardrooms to educational institutions and high-end residential settings. This 10-inch color touchpanel exemplifies advanced technology combined with user-friendly features, making it a popular choice among integrators and end-users alike.

One of the standout features of the NXD-1000Vi is its high-resolution display, which measures 10.1 inches diagonally, providing a crisp and clear visual experience. The capacitive touchscreen allows for seamless navigation, supporting multi-touch gestures similar to those found on modern smartphones and tablets. This intuitive interface enables users to control AV systems, lighting, HVAC, and more with minimal learning curve.

The NXD-1000Vi incorporates advanced technologies such as Wi-Fi connectivity, which enhances flexibility in system design. This wireless capability allows for easy placement of the touchpanel without the constraints of Ethernet cabling, making it suitable for both new installations and upgrades. Additionally, it supports PoE (Power over Ethernet), providing power and data over a single cable, simplifying installation efforts by reducing the number of cables needed.

In terms of processing power, the NXD-1000Vi features rapid response times, ensuring that commands are executed swiftly. Coupled with its user-friendly graphical interface, this touchpanel allows for customization that can adapt to diverse user needs and preferences. It can be programmed to manage various devices and systems, making it a versatile solution for control in various environments.

The touchpanel also supports integrated video capabilities, allowing for the display of video feeds, making it ideal for monitoring and presentation purposes. Furthermore, it includes built-in speakers for audio feedback, enhancing the interactive experience for users.

Durability is a key characteristic of this device, as it is designed to withstand daily use in busy environments. Its sleek design not only looks professional but also ensures that it is easy to clean and maintain. With its robust set of features and adaptability, the AMX NXD-1000Vi stands out as an excellent choice for those looking to enhance their control system with an intuitive and reliable interface.
Top Page Image Contents