Manual
27 AirLive WH-5000A User’s Manual
WH-5000A Serials User Guide
4.3.2
802.11i
and
WPA
`
WPA
WPA
(Wi-Fi
Protected
Access)
was
designed
to
enable
use
of
wireless
legacy
systems
employing
WEP
while
improving
security.
WPA
uses
improved
data
encryption
through
the
Temporal
Key
Integrity
Protocol
(TKIP)
ensures
that
the
keys
haven’t
been
tampered
with.
In
addition,
user
authentication
is
enabled
using
the
Extensible
Authentication
Protocol
(EAP).
For
enhanced
security,
you
can
enable
IEEE
802.1x
authentication,
which
provides
authenticated
access
to
802.11
wireless
networks.
IEEE
802.1x
authentication
minimizes
wireless
network
security
risks,
such
as
unauthorized
access
to
network
resources
and
eavesdropping.
It
provides
user
and
computer
identification,
centralized
authentication,
and
dynamic
key
management.
The
support
that
IEEE
802.1x
provides
for Extensible
Authentication
Protocol
(EAP)
security
types
allows
you
to
use
authentication
methods
such
as smart
cards
and
certificates
.Using
802.1x
function,
you
need
to
install
a
separate
certification
system,
such
as
Radius
Server,
for
key
management
and
authentication
requires
and
each
client
must
have
been
issued
an
authentication
certificate.
-
Pre-Share
Key
or
802.1x:
If
you
don’t
have
Radius
Server,
selecting
pre-shared
key.
Simply
input
up
to
63
character
/numeric
/hexadecimals
in
the
Passphrase
field.
If
your
clients
use
WPA-TKIP
select
TKIP
as
encryption
type.
If
your
clients
use
WPA-AES,
select
AES-CCMP.
If
you
have
installed
Radius
Servers,
select
WPA
802.1x
and
input
the
Radius
Server
setting.
-
TKIP
or
AES-CCMP:
TKIP
scrambles
keys
using
a
hashing algorithm
and,
by adding
an
integrity-checking
feature,
ensures
that the
keys
haven't
been
tampered
with.
The TKIP improves
security
especially
for legacy
hardware
whose
implement
WEP encryption
engine.
The
AES-CCMP
is
a
stronger
encryption
algorithm
for
newer
hardware.
If
the
clients
support
this
new
encryption
algorithm,
you
can
use
it
to
enhance
the
security
of
wireless
network.