Manualshelf

User Manual

ManualsBrandsPsion ManualsComputers & AccessoriesPSION TEKLOGIX WIRELESS GATEWAY 802.11a/b/g
141142143144145146147148149150
Psion Teklogix 9160 Wireless Gateway User Manual 119
Chapter 13: Configuring Security
Comparison Of Security Modes For Key Management, Authentication And Encryption Algorithms
Additionally, compatibility issues may be cumbersome because of the variety of
authentication methods supported and the lack of a standard implementation method.
Therefore, IEEE 802.1x mode is not as secure a solution as Wi-Fi Protected Access
(WPA) or WPA2. If you cannot use WPA because some of your client stations do
not have WPA, then a better solution than using IEEE 802.1x mode is to use
WPA/WPA2 Enterprise (RADIUS) mode instead and check the “Allow non-
WPA IEEE 802.1x clients” checkbox to allow non-WPA clients. This way, you
get the benefit of IEEE 802.1x key management for non-WPA clients along with
even better data protection of TKIP and CCMP (AES) key management and encryp-
tion algorithms for your WPA and WPA2 clients.
See Also
For information on how to configure IEEE 802.1x security mode, see “IEEE
802.1x” on page 131.
13.1.2.4 When To Use WPA/WPA2 Personal (PSK)
Wi-Fi Protected Access 2 (WPA2) Personal Pre-Shared Key (PSK) is an implemen-
tation of the Wi-Fi Alliance IEEE 802.11i standard, which includes Advanced
Encryption Algorithm (AES), Counter mode/CBC-MAC Protocol (CCMP), and
Temporal Key Integrity Protocol (TKIP) mechanisms. This mode offers the same
encryption algorithms as WPA 2 with RADIUS but without the ability to integrate a
RADIUS server for user authentication.
This security mode is backwards-compatible for wireless clients that support only
the original WPA.
Key Management Encryption Algorithms User Authentication
WPA/WPA2 Personal
(PSK) provides dynami-
cally-generated keys that
are periodically refreshed.
There are different
Uni-
cast
keys for each station.
Temporal Key Integrity Protocol
(TKIP).
Counter mode/CBC-MAC Proto-
col (CCMP) Advanced Encryp-
tion Standard (AES).
The use of a Pre-Shared (
PSK
) key provides
user authentication similar to that of shared
keys in
WEP
.
Table 13.3 WPA/WPA2 Personal (PSK) Security Mode