Wireless (for ISA550W and ISA570W only)
Configuring SSID Profiles
Cisco ISA500 Series Integrated Security Appliances Administration Guide 212
5
WEP Wired Equivalent Privacy (WEP) is a data encryption
protocol for 802.11 wireless networks. All wireless
stations and SSIDs on the network are configured with
a static 64-bit or 128-bit Shared Key for data
encryption. The higher the bit for data encryption, the
more secu re for your netw ork.
WEP encryption is an older encryption method that is
not considered to be secure and can easily be broken.
Choose this option only if you need to allow access to
devices that do not support WPA or WPA2.
WPA Wi-Fi Protected Access (WPA) provides better
security than WEP because it uses dynamic key
encryption. This standard was implemented as an
intermediate measure to replace WEP, pending final
completion of the 802.11i standard for WPA2.
The security appliance supports the following WPA
security modes. Choose one of them if you need to
allow access to devices that do not support WPA2.
•WPA-Personal: Supports TKIP (Temporal Key
Integrity Protocol) or AES (Advanced Encryption
System) encryption mechanisms for data
encryption (default is TKIP). TKIP uses dynamic
keys and incorporates Message Integrity Code
(MIC) to provide protection against hackers. AES
uses symmetric 128-bit block data encryption.
•WPA-Enterprise: Uses WPA with RADIUS
authentication. This mode supports TKIP and
AES encryption mechanisms (default is TKIP)
and requires the use of a RADIUS server to
authenticate users.
Security Mode D escription