7-12
Wireless Security Configuration
Wireless Security Overview
Other Security Features
In addition to the wireless security features described in the preceding section,
the Access Point 530 has a user-based security feature called Identity Driven
Management (IDM).
For more details on IDM, see
“Identity Driven Management” on page 8-36.
Table 7-1. Summary of Wireless Security
Security Mechanism Client Support Implementation Considerations
No Security
(NOT RECOMMENDED)
Built-in support on all 802.11a,
802.11b, and 802.11g devices
• No key management, data encryption, or user
authentication is used
Static WEP Keys Built-in support on all 802.11a,
802.11b, and 802.11g devices
• Provides only weak security
• Requires manual key management
Dynamic WEP Requires 802.1X client support in
system or by add-in software
(support provided in Windows 2000
SP3 or later, Windows XP, and
Windows Vista)
• Provides dynamic key rotation for improved WEP
security
• Requires configured RADIUS server
• 802.1X EAP type may require management of digital
certificates for stations and server
WPA-PSK Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP and Windows Vista)
• Provides dynamically generated keys that are
periodically refreshed
• Provides similar shared key user authentication
• Provides robust security in small networks
WPA-PSK (WPA2 Only) Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP and Windows Vista)
• Provides robust security in small networks
• Requires manual management of pre-shared key
• stations may require hardware upgrade to be WPA2
compliant
WPA-802.1X
(RECOMMENDED
MODE)
Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP and Windows Vista)
• Provides dynamically generated keys that are
periodically refreshed
• Requires configured RADIUS server
• Provides backward compatibility to the original WPA
WPA-8021X (WPA2
only)
Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP and Windows Vista)
• Provides the strongest security in WPA2-only mode
• Provides robust security in mixed mode for WPA and
WPA2 stations
• Offers fast roaming for time-sensitive station
applications
• Requires configured RADIUS server
• 802.1X EAP type may require management of digital
certificates for stations and server
• Stations may require hardware upgrade to be WPA2
compliant
To Next Page
Loading...
Need help?
General
