IBM's hopes on year's end to deliver notebooks with built-in security chips that are integrated with a wireless authentication and encryption technology developed by Cisco Systems.
Armonk, N.Y.-based Big Blue plans to extend LEAP -- which stands for Lightweight EAP (Extensible Access Protocol) -- out to its security chips. Cisco's LEAP authenticates users accessing Cisco networks at the edge of the network.
"We're working on enhancing the LEAP protocol to use our chip to do secure storage and to support encryption," said Clain Anderson, the personal computing division's director of client security at IBM.
Last year Cisco submitted LEAP to the IEEE as 802.11i, a security draft standard that runs over 802.1x.
IBM has shared the intellectual property in its security chip technology with the Trusted Computing Platform Alliance, an industry workgroup focused on trust and security. "We expect that it will sooner or later be showing up in handhelds, PDAs, and phones," Anderson said, adding that ultimately all systems will have personal firewalls and security chips.
"The idea of putting [an authentication mechanism] into a client [rather than in a server] is intriguing," said Pete Lindstrom, an analyst at Framingham, Mass.-based Hurwitz Group Inc. "The dynamic generation of security keys is a performance-intensive operation, and putting it into chips makes sense."
Already IBM and Toshiba Corp. ship notebooks that support LEAP.
Ron Seide, a product-line manger at San Jose, Calif.-based Cisco, points out that alternatives to LEAP exist, including Microsoft Corp.'s EAP-TLS (Transport Layer Security) and Funk Software Inc.'s EAP-TTLS (Tunneled TLS) -- two protocols that have also been submitted as standard drafts. Seide also mentions PEAP (Protected EAP) -- which provides a more open means for working with all RADIUS (Remote Authentication Dial-In User Service) servers, as opposed to the proprietary approaches available from Cisco and Microsoft, among others.