NETGEAR WPN111 How Does WPA Compare to Ieee 802.11i?, What are the Key Features of WPA Security?

Page 61

User Manual for the NETGEAR RangeMax™ Wireless USB 2.0 Adapter WPN111

For 802.11, WEP encryption is optional. For WPA, encryption using Temporal Key Integrity Protocol (TKIP) is required. TKIP replaces WEP with a new encryption algorithm that is stronger than the WEP algorithm, but that uses the calculation facilities present on existing wireless devices to perform encryption operations. TKIP provides important data encryption enhancements including a per-packet key mixing function, a message integrity check (MIC) named Michael, an extended initialization vector (IV) with sequencing rules, and a re-keying mechanism. Through these enhancements, TKIP addresses all of known WEP vulnerabilities.

How Does WPA Compare to IEEE 802.11i?

WPA will be forward compatible with the IEEE 802.11i security specification currently under development. WPA is a subset of the current 802.11i draft and uses certain pieces of the 802.11i draft that are ready to bring to market today, such as 802.1x and TKIP. The main pieces of the 802.11i draft that are not included in WPA are secure IBSS (Ad-Hoc mode), secure fast handoff (for specialized 802.11 VoIP phones), as well as enhanced encryption protocols such as AES-CCMP. These features are either not yet ready for market or will require hardware upgrades to implement.

What are the Key Features of WPA Security?

The following security features are included in the WPA standard:

•WPA Authentication

•WPA Encryption Key Management

–Temporal Key Integrity Protocol (TKIP)

–Michael message integrity code (M I C )

–AES Support

•Support for a Mixture of WPA and WEP Wireless Clients

These features are discussed below.

WPA addresses most of the known WEP vulnerabilities and is primarily intended for wireless infrastructure networks as found in the enterprise. This infrastructure includes stations, access points, and authentication servers (typically RADIUS servers). The RADIUS server holds (or has access to) user credentials (e.g., user names and passwords) and authenticates wireless users before they gain access to the network.

W ire le ss N e tworkin g B a sics

B -1 5

202-10076-01

Image 61

Contents NETGEAR, I n c Technical Support FCC Information to User Ta n d a rd s Teste d to C om p lyContents Troubleshooting Index Viii Audience, Scope, Conventions Chapter About This ManualHow to Print this Manual Chapter Introduction Key FeaturesAbout the WPN111 What’s in the Box? Road Map for ‘How to Get There From Here’Wire le ss On n e ct to a E n tify th e Wire le ss n e tworkWire le ss n etwork To le a rn a b ou t wire le ssVe rify m y n e twork Ca b le or D S L se rvice Twork Ctiva te m yCon n e ction Rovid e rs For you r ve rsion of W in d ows Rowse r su ch a sTwork Con n e ct to th e wire le ss Wire d n etwork Wire le ss a n dE P C I a m u sin g to Igh b orh oodCom b in e d Wire le ss a n d Com p u te r su p p ort grou p sTwork n e e d s to b e D P rin t S h a rin gWhat You Need Before You Begin Chapter Basic SetupVerifying System Requirements Observing Location and Range Guidelines Two Basic Operating ModesBasic Installation Instructions WPN111 Default Wireless Configuration SettingsClick Install Driver and Utility For Windows XP Users Installing a WPN111Sta llS h ie ld W iza rd Ort, you V1 typ eIs 1 4 M b p s wh e re a s th e With a W in d ows X P L ogo te stin gSte p s, click th e H e lp b u tton in th e W P N 1 1 Th e se202-10076-01 N 1 1 1 R e sou rce C D Sta llS h ie ld W iza rd For Windows 2000 Users Installing a WPN111Sp e e d is 1 Ou n d N e w H a rd wa re W iza rdOrt is 4 8 0 M b p s N 1 1 1 S yste m Tra y I con Tility Interpreting the LED on the WPN111 WPN111 Wireless Connection IndicatorsOr re se t Interpreting System Tray Icon Colors Understanding the Configuration Options Chapter ConfigurationUsing Configuration Profiles How to Configure an Infrastructure Mode Profile Connecting to an Access Point in Infrastructure ModeRun the WPN111 Configuration Utility Save your settings in a Profile Configure the wireless Network settingsHow to Configure an Ad-hoc Mode Profile Connecting to Another PC in Ad-hoc ModeVerify wireless connectivity to your network Windows Run program dialog box Configure the PC network settingsPing test results How to Start a Computer-to-Computer Ad-Hoc NetworkEnabling Wireless Security Features Configure the Security settings How to Configure WEP Encryption SecurityHow to Configure WPA-PSK Encryption Security Advanced Security StatisticsAdvanced Settings Advanced Settings202-10076-01 Basic Tips Chapter TroubleshootingGeneral Questions Frequently Asked QuestionsNew Hardware Wizard appears after installation has completed Rou b le s h ootin g Appendix a Technical Specifications Ch n ica l S p e cifica tion s Wireless Networking Overview Appendix B Wireless Networking BasicsInfrastructure Mode Network Name Extended Service Set Identification Essid Ad Hoc Mode Peer-to-Peer WorkgroupWireless Channels 802.11b/g Wireless Channels For U S Re qu e n cy G H z 5 5 2 5 5 2For C a n a d a W for E u rop eWPN111 user can use thirteen channels in non-turbomode 152 Wireless Security Overview160 WEP Overview WEP Authentication802.1x Cisco LeapAuthentication Open System Steps Bit WEP WEP KeysWEP Key Configuration How to Use WEP Parameters802.1x Port Based Network Access Control Figure B-4 802.1x authentication WPA Wireless Security How Does WPA Compare to WEP? How Does WPA Compare to Ieee 802.11i? What are the Key Features of WPA Security?Figure B-5 WPA Overview Figure B-6 WPA/802.1x Authentication Sequence 202-10076-01 Temporal Key Integrity Protocol Tkip WPA Data Encryption Key ManagementMichael Product Support for WPA Is WPA Perfect?AES Support Wireless network adapters Wireless client programs 202-10076-01 Configuring Windows 98 and Me for TCP/IP Networking Appendix C Preparing Your PCs for Network AccessInstall or Verify Windows Networking Components Preparing Your Computers for TCP/IP NetworkingRe p a rin g Y ou r P C s for N e twork a cce ss Enabling Dhcp in Windows 98 and Me Choose Settings, and then Control PanelLocate your Network Neighborhood icon Primary Network Logon is set to Windows logon Verifying TCP/IP Properties Selecting Windows’ Internet Access MethodConfiguring Windows 2000 or XP for TCP/IP Networking Dhcp Configuration of TCP/IP in Windows XP Dhcp Configuration of TCP/IP in Windows XP orTCP/IP details are presented on Support tab Verify that Obtain an IP address Dhcp Configuration of TCP/IP in WindowsObtain an IP address automatically is selected Verifying TCP/IP Properties for Windows XP or 202-10076-01 Glossary DSL Internet service provider Ssid Wins 202-10076-01 Numerics Index

Related manuals

Manual 87 pages 60.77 Kb