User's Manual Part 2

Notes:

1. Open: Open authentication allows any clients to authenticate and then attempts to

communicate with the router.

2. Shared-key :

a) Shared Key authentication seeks to authenticate clients as either a member of

those who know a shared secret key or a member of those who do not.

b) Shared Key authentication can be used if and only if WEP has been selected.

c) Not recommended because of known security flaws.

3. WEP: Wired Equivalent Privacy

a) WEP have three keys, 64bits, 128bits and 152bits, and based on RC4

algorithm.

b) WEP was defined as a means of protecting the confidentiality of data

exchanged among authorized users of a wireless LAN from casual

eavesdropping.

4. WPA :

a) Wi-Fi Protected Access (WPA) is a standards-based, interoperable security

enhancement that strongly increases the level of data protection and access

control for existing and future wireless LAN systems.

b) WPA leverages TKIP (Temporal Key Integrity Protocol) for data protection and

802.1X for authenticated key management.

c) WPA key management supports two mutually exclusive management types:

WPA(802.1X) and WPA-Pre-shared key (WPA-PSK)

5. WPA2: WPA version 2, add AES encryption algorithm than WPA.

802.1X:

a) Port-Based Networks Access Control;

8021X is consisting of supplicant, authenticator and server.

After clients associate to BSS successful, clients start authentication process of

8021X. IEEE 8021X think an associate to be a controlled port.

MSR2000 CLI Configuration Guide