Wireless LAN – WLAN
44
3.2
Development of WLAN security
BAT54-Rail/F..
Release
7.54
06/08
A second measure allows for some acceleration even in the case of first-time
registration, but it requires a little care on the part of the client. The client must
already detect a degrading connection to the access point during operation
and select a new access point while it is still in communication with the old
access point. In this case it has the opportunity to perform the 802,1x nego-
tiation with the new access point over the old one, which again reduces the
"dead time" by the time required for the 802.1x negotiation.
3.2.7 Summary
After the security loopholes in WEP encryption became public knowledge,
the presentation of short-term solutions such as WEPplus and the intermedi-
ate steps like WPA, the IEEE committee has now presented the new WLAN
security standard 802.11i. The TKIP procedure used by WPA is based on the
older RC4 algorithm, the foundation of WEP. AES is the first important and
conclusive step towards a truly secure encryption system. 802.11i/AES have
confined the practical and theoretical security loopholes in previous methods
to history.
The AES procedure provides security on a level that satisfies the Federal In-
formation Standards (FIPS) 140-2 specifications that are required by many
public authorities.
Hirschmann equips its 54Mbps products with the Atheros chip set featuring
a hardware AES accelerator. This guarantees the highest possible level of
encryption without performance loss.
The user-friendly pre-shared key procedure (entry of a passphrase of 8-63
characters in length) makes 802.11i quick and easy for anybody to set up.
Professional infrastructures with a larger number of users can make use of
802.1x and RADIUS servers.
In combination with further options such as Multi-SSID and VLAN tagging, it
is possible to provide highly secure networks for multiple user groups and
with different levels of security.
D VLAN tagging is available as of LCOS version 3.32.
D Multi-SSID is available as of LCOS 3.42.
D Hirschmann provides the PSK procedure as of the LCOS version 3.50.
D 802.1x will be supported as of LCOS version 3.52.
To Next Page
Loading...
Need help?
General
