PEAP Protected Extensible Authentication Protocol
Protected Extensible Authentication Protocol, Protected EAP, or simply PEAP
(pronounced "peep"), is a method to securely transmit authentication information,
including passwords, over wired or wireless networks. It was jointly developed
by Cisco Systems, Microsoft, and RSA Security. Note that PEAP is not an
encryption protocol; as with other EAP types it only authenticates a client into a network.
PEAP uses only server-side public key certificates to authenticate clients by
creating an encrypted SSL/TLS tunnel between the client and the authentication
server, which protects the ensuing exchange of authentication information from
PEAP is a joint proposal by Cisco Systems, Microsoft and RSA Security as an
open standard. It is already widely available in products, and provides very
good security. It is similar in design to EAP-TTLS, requiring only a server-side
PKI certificate to create a secure TLS tunnel to protect user authentication.