
IEEE 802.1X-2010
Superseded
A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.
View Superseded by

IEEE Standard for Local and metropolitan area networks--Port-Based Network Access Control
03-02-2020
02-05-2010
1. Overview
2. Normative references
3. Definitions
4. Acronyms and abbreviations
5. Conformance
6. Principles of port-based network access control
operation
7. Port-based network access control applications
8. Authentication using EAP
9. MACsec Key Agreement protocol (MKA)
10. Network announcements
11. EAPOL PDUs
12. PAE operation
13. PAE MIB
Annex A (normative) - PICS proforma
Annex B (informative) - Bibliography
Annex C (normative) - State diagram notation
Annex D (normative) - Basic architectural concepts and terms
Annex E (informative) - IEEE 802.1X EAP and RADIUS usage
guidelines
Annex F (informative) - Support for 'Wake-on-LAN' protocols
Annex G (informative) - Unsecured multi-access LANs
Annex H (informative) - Test vectors
Describes a general method for provision of port-based network access control and specifies protocols that establish secure associations for IEEE Std 802.1AEÖ MAC Security.
Committee |
LAN/MAN Standards Committee
|
DevelopmentNote |
Supersedes IEEE DRAFT 802.1X. (12/2004) Amendment 1 to IEEE 802.1X is available separately, see IEEE 802.1XBX. (12/2014)
|
DocumentType |
Standard
|
ISBN |
978-0-7381-6146-4
|
Pages |
350
|
ProductNote |
NEW CHILD A2 IS NOW ADDED.
|
PublisherName |
Institute of Electrical & Electronics Engineers
|
Status |
Superseded
|
SupersededBy | |
Supersedes |
CEI EN 60839-11-31 : 1ED 2017 | ALARM AND ELECTRONIC SECURITY SYSTEMS - PART 11-31: ELECTRONIC ACCESS CONTROL SYSTEMS - CORE INTEROPERABILITY PROTOCOL BASED ON WEB SERVICES |
IEEE 802.1AB-2009 | IEEE Standard for Local and Metropolitan Area Networks-- Station and Media Access Control Connectivity Discovery |
I.S. EN 62676-2-3:2014 | VIDEO SURVEILLANCE SYSTEMS FOR USE IN SECURITY APPLICATIONS - PART 2-3: VIDEO TRANSMISSION PROTOCOLS - IP INTEROPERABILITY IMPLEMENTATION BASED ON WEB SERVICES |
ISO/IEC/IEEE 8802-1AE:2013 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Part 1AE: Media access control (MAC) security |
STANAG 4640 : 2010 | TACTICAL COMMUNICATIONS (TACOMS) PHASE 1 - LOWER LAYER SPECIFICATIONS |
UNI CEN/TS 16238 : 2011 | POSTAL SERVICES - OPEN INTERFACE BETWEEN MACHINE CONTROL AND READING CODING SYSTEM - MC/RC-INTERFACE |
IEEE 802.1Q-2014 | IEEE Standard for Local and metropolitan area networks--Bridges and Bridged Networks |
ISO/IEC/IEEE 8802-1Q:2016 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 1Q: Bridges and bridged networks |
EN 62676-2-3:2014 | Video surveillance systems for use in security applications - Part 2-3: Video transmission protocols - IP interoperability implementation based on Web services |
IEEE 802.1S : 2002 | LOCAL AND METROPOLITAN AREA NETWORKS - VIRTUAL BRIDGED LOCAL AREA NETWORKS - AMENDMENT 3: MULTIPLE SPANNING TREES |
DD CEN/TS 16238:2011 | Postal services. Open interface between machine control and reading coding system. MC/RC-Interface |
13/30284458 DC : 0 | BS ISO/IEC/IEEE 8802-1X - INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - PART 1X: PORT-BASED NETWORK ACCESS CONTROL |
ISO/IEC/IEEE 8802-22:2015 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 22: Cognitive Wireless RAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications: Policies and Procedures for Operation in the TV Bands |
CSA ISO/IEC/IEEE 8802-1Q : 2018 | INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - SPECIFIC REQUIREMENTS - PART 1Q: BRIDGES AND BRIDGED NETWORKS |
IEEE 802.1AS-2011 | IEEE Standard for Local and Metropolitan Area Networks - Timing and Synchronization for Time-Sensitive Applications in Bridged Local Area Networks |
BS ISO/IEC/IEEE 8802-1X : 2013 | INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - PART 1X: PORT-BASED NETWORK ACCESS CONTROL |
ISO/IEC/IEEE 8802-11:2012 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 11: Wireless LAN medium access control (MAC) and physical layer (PHY) specifications |
IEC TR 62351-13:2016 | Power systems management and associated information exchange - Data and communications security - Part 13: Guidelines on security topics to be covered in standards and specifications |
CEI EN 62676-2-3 : 2014 | VIDEO SURVEILLANCE SYSTEMS FOR USE IN SECURITY APPLICATIONS - PART 2-3: VIDEO TRANSMISSION PROTOCOLS - IP INTEROPERABILITY IMPLEMENTATION BASED ON WEB SERVICES |
IEC TS 62351-8:2011 | Power systems management and associated information exchange - Data and communications security - Part 8: Role-based access control |
IEEE 61158-2017 | IEEE Standard for Industrial Hard Real-Time Communication |
ECMA/TR 92 : 2ED 2010 | CORPORATE TELECOMMUNICATION NETWORKS - MOBILITY FOR ENTERPRISE COMMUNICATIONS |
BS ISO/IEC/IEEE 8802-1AB:2017 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks. Specific requirements Station and media access control connectivity discovery |
IEEE 802.1AR-2009 | IEEE Standard for Local and metropolitan area networks - Secure Device Identity |
IEEE 1901-2010 | IEEE Standard for Broadband over Power Line Networks: Medium Access Control and Physical Layer Specifications |
IEEE 1904.1-Conformance02-2014 | IEEE Standard for Conformance Test Procedures for Service Interoperability in Ethernet Passive Optical Networks, IEEE Std 1904.1(TM) Package B |
CAN/CSA-ISO/IEC/IEEE 8802-1X:18 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 1X: Port-based network access control (Adopted ISO/IEC/IEEE 8802-1X:2013, first edition, 2013-12-01, including adopted amendment 1:2016) |
ISO/IEC/IEEE 8802-21:2018 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 21: Media independent services framework |
IEEE 802.15.9-2016 | IEEE Recommended Practice for Transport of Key Management Protocol (KMP) Datagrams |
BS EN 62676-2-3:2014 | Video surveillance systems for use in security applications Video transmission protocols. IP interoperability implementation based on Web services |
IEC PAS 62408:2005 | Real-time Ethernet Powerlink (EPL) |
IEEE DRAFT 802.11MA : D7.0 2006 | INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - SPECIFIC REQUIREMENTS - PART 11: WIRELESS LAN MEDIUM ACCESS CONTROL (MAC) AND PHYSICAL LAYER (PHY) SPECIFICATIONS |
PD IEC/TR 61850-90-12:2015 | Communication networks and systems for power utility automation Wide area network engineering guidelines |
BS ISO/IEC/IEEE 8802-1Q:2016 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks. Specific requirements Bridges and bridged networks |
BS ISO/IEC/IEEE 8802-22:2015 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks. Specific requirements Cognitive Wireless RAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications: Policies and Procedures for Operation in the TV Bands |
IEEE 802.1D-2004 | IEEE Standard for Local and metropolitan area networks: Media Access Control (MAC) Bridges |
13/30284453 DC : 0 | BS ISO/IEC/IEEE 8802-1AE - INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - PART 1AE MEDIA ACCESS CONTROL (MAC) SECURITY |
DD IEC/TS 62351-8:2011 | Power systems management and associated information exchange. Data and communications security Role-based access control |
ISO/IEC/IEEE 8802-1AB:2017 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 1AB: Station and media access control connectivity discovery |
UFC 4-010-06 : Change 1 | UNIFIED FACILITIES CRITERIA - CYBERSECURITY OF FACILITY-RELATED CONTROL SYSTEMS |
IEEE 1904.1-2013 | IEEE Standard for Service Interoperability in Ethernet Passive Optical Networks (SIEPON) |
BS ISO/IEC/IEEE 8802-1AE:2013 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks Media access control (MAC) security |
IEEE DRAFT 802.1AB : D13 2004 | LOCAL AND METROPOLITAN NETWORKS: STATION AND MEDIA ACCESS CONTROL CONNECTIVITY DISCOVERY |
CAN/CSA-ISO/IEC TR 26927:13 (R2017) | Information technology - Telecommunications and information exchange between systems - Corporate telecommunication networks - Mobility for enterprise communications (Adopted ISO/IEC TR 26927:2011, second edition, 2011-09-01) |
BS EN 60839-11-31:2017 | Alarm and electronic security systems Electronic access control systems. Core interoperability protocol based on Web services |
CSA ISO/IEC TR 26927 : 2013 | INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - CORPORATE TELECOMMUNICATION NETWORKS - MOBILITY FOR ENTERPRISE COMMUNICATIONS |
ISO/IEC/IEEE 8802-1X:2013 | Telecommunications and exchange between information technology systems — Requirements for local and metropolitan area networks — Part 1X: Port-based network access control |
IEEE 802.1W : 2001 | LOCAL AND METROPOLITAN AREA NETWORKS - COMMON SPECIFICATIONS - PART 3: MEDIA ACCESS CONTROL (MAC) BRIDGE - AMENDMENT 2: RAPID RECONFIGURATION |
IEEE 1901.2-2013 | IEEE Standard for Low-Frequency (less than 500 kHz) Narrowband Power Line Communications for Smart Grid Applications |
IEEE 802.11-2016 | IEEE Standard for Information technology--Telecommunications and information exchange between systems Local and metropolitan area networks--Specific requirements - Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications |
ISO/IEC 8802-11:2005 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Specific requirements — Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) specifications |
ISO/IEC TR 26927:2011 | Information technology — Telecommunications and information exchange between systems — Corporate telecommunication networks — Mobility for enterprise communications |
IEC 60839-11-31:2016 | Alarm and electronic security systems - Part 11-31: Electronic access control systems - Core interoperability protocol based on Web services |
S.R. CEN/TS 16238:2011 | POSTAL SERVICES - OPEN INTERFACE BETWEEN MACHINE CONTROL AND READING CODING SYSTEM - MC/RC-INTERFACE |
BS ISO/IEC/IEEE 8802-1AR:2014 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks Secure device identity |
ETSI TS 102 232-3 V3.3.1 (2013-10) | Lawful Interception (LI); Handover Interface and Service-Specific Details (SSD) for IP delivery; Part 3: Service-specific details for internet access services |
BS ISO/IEC/IEEE 8802-1AS:2014 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks Timing and synchronization for time-sensitive applications in bridged local area networks |
BS ISO/IEC/IEEE 8802-21:2018 | Information technology. Telecommunications and information exchange between systems. Local and metropolitan area networks. Specific requirements Media independent services framework |
ECMA/TR 95 : 1ED 2008 | NEXT GENERATION CORPORATE NETWORKS (NGCN) - GENERAL |
ISO/IEC/IEEE 8802-1AR:2014 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Part 1AR: Secure device identity |
IEEE 802.1AE-2006 | IEEE Standard for Local and Metropolitan Area Networks: Media Access Control (MAC) Security |
IEEE 802.21-2008 | IEEE Standard for Local and metropolitan area networks - Media Independent Handover Services |
CAN/CSA-ISO/IEC/IEEE 8802-22:16 | Information technology Telecommunications and information exchange between systems Local and metropolitan area networks Specific requirements Part 22: Cognitive Wireless RAN Medium Access Control (MCA) and Physical Layer (PHY) Specifications: Policies and Procedures for Operation in the TV Bands (Adopted ISO/IEC/IEEE 8802-22:2015, first edition, 2015-05-01) |
ETSI TR 103 305-1 V2.1.1 (2016-08) | CYBER; Critical Security Controls for Effective Cyber Defence; Part 1: The Critical Security Controls |
IEEE 802.22-2011 | IEEE Standard for Information technology-- Local and metropolitan area networks-- Specific requirements-- Part 22: Cognitive Wireless RAN Medium Access Control (MAC) and Physical Layer (PHY) specifications: Policies and procedures for operation in the TV Bands |
I.S. EN 60839-11-31:2017 | ALARM AND ELECTRONIC SECURITY SYSTEMS - PART 11-31: ELECTRONIC ACCESS CONTROL SYSTEMS - CORE INTEROPERABILITY PROTOCOL BASED ON WEB SERVICES |
ECMA/TR 100 : 1ED 2009 | NEXT GENERATION CORPORATE NETWORKS (NGCN) - SECURITY OF SESSION-BASED COMMUNICATIONS |
ISO/IEC TR 12860:2009 | Information technology — Telecommunications and information exchange between systems — Next Generation Corporate Networks (NGCN) — General |
ISO/IEC/IEEE 8802-1AS:2014 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Part 1AS: Timing and synchronization for time-sensitive applications in bridged local area networks |
ISO/IEC TR 16166:2010 | Information technology — Telecommunications and information exchange between systems — Next Generation Corporate Networks (NGCN) — Security of session-based communications |
IEC 62676-2-3:2013 | Video surveillance systems for use in security applications - Part 2-3: Video transmission protocols - IP interoperability implementation based on Web services |
EN 60839-11-31:2017 | Alarm and electronic security systems - Part 11-31: Electronic access control systems - Core interoperability protocol based on Web services |
CEN/TS 16238:2011 | Postal services - Open Interface between Machine Control and Reading Coding System - MC/RC-Interface |
IEEE 802.1Q-2018 | IEEE Standard for Local and Metropolitan Area Networks—Bridges and Bridged Networks |
IEEE/ISO/IEC 8802-1Q-2016 | ISO/IEC/IEEE International Standard - Information technology -- Telecommunications and information exchange between systems -- Local and metropolitan area networks -- Specific requirements -- Part 1Q: Bridges and bridged networks |
IEEE/ISO/IEC 8802-1AB-2014 | ISO/IEC/IEEE International Standard for Information technology -- Telecommunications and information exchange between systems -- Local and metropolitan area networks -- Part 1AB: Station and Media Access Control Connectivity Discovery |
IEEE 802.11-2020 | IEEE Standard for Information Technology--Telecommunications and Information Exchange between Systems - Local and Metropolitan Area Networks--Specific Requirements - Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications |
IEEE 802.21-2017 REDLINE | IEEE Standard for Local and metropolitan area networks--Part 21: Media Independent Services Framework |
IEEE 1904.1-2017 REDLINE | IEEE Standard for Service Interoperability in Ethernet Passive Optical Networks (SIEPON) |
IEEE 802.1CF-2019 | IEEE Recommended Practice for Network Reference Model and Functional Description of IEEE 802(R) Access Network |
IEEE 802.1AR-2009 | IEEE Standard for Local and metropolitan area networks - Secure Device Identity |
ISO/IEC 7498-1:1994 | Information technology — Open Systems Interconnection — Basic Reference Model: The Basic Model |
IEEE 802.1AX-2014 | IEEE Standard for Local and metropolitan area networks -- Link Aggregation |
ISO/IEC TR 11802-2:2005 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Technical reports and guidelines — Part 2: Standard Group MAC Addresses |
IEEE 802.3-2012 | IEEE Standard for Ethernet |
ISO/IEC 18033-3:2010 | Information technology — Security techniques — Encryption algorithms — Part 3: Block ciphers |
IEEE 802.1Q-2014 | IEEE Standard for Local and metropolitan area networks--Bridges and Bridged Networks |
IEEE 802.11-2016 | IEEE Standard for Information technology--Telecommunications and information exchange between systems Local and metropolitan area networks--Specific requirements - Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications |
IEEE 802A : 2003 | LOCAL AND METROPOLITAN AREA NETWORKS: OVERVIEW AND ARCHITECTURE - AMENDMENT 1: ETHERTYPES FOR PROTOTYPE AND VENDOR-SPECIFIC PROTOCOL DEVELOPMENT |
IEEE 802.1D-2004 | IEEE Standard for Local and metropolitan area networks: Media Access Control (MAC) Bridges |
IEEE 802.1AEbn-2011 | LOCAL AND METROPOLITAN AREA NETWORKS - MEDIA ACCESS CONTROL (MAC) SECURITY - AMENDMENT 1: GALOIS COUNTER MODE - ADVANCED ENCRYPTION STANDARD - 256 (GCM-AES-256) CIPHER SUITE |
ISO/IEC 8824:1990 | Information technology — Open Systems Interconnection — Specification of Abstract Syntax Notation One (ASN.1) |
IEEE 802.1AEBW : 2013 | LOCAL AND METROPOLITAN AREA NETWORKS - MEDIA ACCESS CONTROL (MAC) SECURITY - AMENDMENT 2: EXTENDED PACKET NUMBERING |
ISO/IEC 8825:1990 | Information technology — Open Systems Interconnection — Specification of Basic Encoding Rules for Abstract Syntax Notation One (ASN.1) |
ISO/IEC 15802-1:1995 | Information technology — Telecommunications and information exchange between systems — Local and metropolitan area networks — Common specifications — Part 1: Medium Access Control (MAC) service definition |
IEEE 802.1AB-2009 | IEEE Standard for Local and Metropolitan Area Networks-- Station and Media Access Control Connectivity Discovery |
IEEE 802.1AE-2006 | IEEE Standard for Local and Metropolitan Area Networks: Media Access Control (MAC) Security |
IEEE 802.1AJ : 2009 | LOCAL AND METROPOLITAN AREA NETWORKS - VIRTUAL BRIDGED LOCAL AREA NETWORKS - AMENDMENT 11: TWO-PORT MEDIA ACCESS CONTROL (MAC) RELAY |
IEEE 802.2 : 1998 | INFORMATION TECHNOLOGY - TELECOMMUNICATIONS AND INFORMATION EXCHANGE BETWEEN SYSTEMS - LOCAL AND METROPOLITAN AREA NETWORKS - SPECIFIC REQUIREMENTS - PART 2: LOGICAL LINK CONTROL |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.
Logging out.