3Com 3CRWEASYA73, WL-575 Wi-Fi Protected Access WPA or WPA2, Wireless Security Considerations

CHAPTER 5: SYSTEM CONFIGURATION

SECURITY

The access point is configured by default as an “open system,” which broadcasts a beacon signal including the configured SSID. Wireless clients with an SSID setting of “any” can read the SSID from the beacon and automatically set their SSID to allow immediate connection to the nearest access point.

To improve wireless network security, you have to implement two main functions:

„Authentication: It must be verified that clients attempting to connect to the network are authorized users.

„Traffic Encryption: Data passing between the access point and clients must be protected from interception and eavesdropping.

For a more secure network, the access point can implement one or a combination of the following security mechanisms:

Both WEP and WPA security settings are configurable separately for each virtual access point (VAP) interface. MAC address filtering, and RADIUS server settings are global and apply to all VAP interfaces.

The security mechanisms that may be employed depend on the level of security required, the network and management resources available, and the software support provided on wireless clients.

A summary of wireless security considerations is listed in the following table.

Table 4 Wireless Security Considerations

5-50