Figure B-5 WPA Overview | NETGEAR WG511U specs

User’s Manual for the NETGEAR Double 108 Mbps Wireless PC Card 32-bit CardBus WG511U

Wireless Network

Wired Network with Optional WPA 802.1x Port Based Network Access Control


					WPA enabled
	WPA				WPA enabled
	enabled				Access Point
	wireless				using
	client with				pre-shared key
	“supplicant”				or
					802.1x/EAP

TCP/IP

Ports Closed

Until

TCP/IP

Ports Opened

After

Authenticated

RADIUS Server

Login

Authentication

Optional

Certificate

Authority

(eg Win

Server,

VeriSign,

etc)

Figure B-5: WPA Overview

The strength WPA comes from an integrated sequence of operations that encompass 802.1X/EAP authentication and sophisticated key management and encryption techniques. Its major operations include:

•Network security capability determination. This occurs at the 802.11 level and is communicated through WPA information elements in Beacon, Probe Response, and (Re) Association Requests. Information in these elements includes the authentication method (802.1X or Pre-shared key) and the preferred cipher suite (WEP, TKIP, or AES).

The primary information conveyed in the Beacon frames is the authentication method and the cipher suite. Possible authentication methods include 802.1X and Pre-shared key. Pre-shared key is an authentication method that uses a statically configured pass phrase on both the stations and the access point. This eliminates the need for an authentication server, which in many home and small office environments will not be available nor desirable. Possible data encryption options include: WEP, TKIP, and AES (Advanced Encryption Standard). We’ll talk more TKIP and AES when addressing data privacy below.

•Authentication. EAP over 802.1X is used for authentication. Mutual authentication is gained by choosing an EAP type supporting this feature and is required by WPA. 802.1X port access control prevents full access to the network until authentication completes. 802.1X EAPOL-Key packets are used by WPA to distribute per-session keys to those stations successfully authenticated.

B-16	Wireless Networking Basics

August 2004

Image 68

NETGEAR WG511U user manual Figure B-5 WPA Overview

Contents

August Technical Support FCC Information to User Export Restrictions Contents Chapter Wireless Security Configuration Glossary Contents Chapter About This Manual Audience, Conventions, Publication Date How to Navigate this Manual Html version of this manual How to Print this Manual About This Manual Key Features and Related Netgear Products Chapter Introduction 802.11a and 802.11b/g Wireless Networking What’s in the Box? Road Map for ‘How to Get There From Here’ Road Map for How to Get There From Here Netgear Double Exchange files Use printers Verifying System Requirements Chapter Basic SetupWhat You Need Before You Begin Two Basic Operating Modes Observing Location and Range Guidelines WG511U Default Wireless Configuration Settings Click Install Driver and Utility Basic Installation InstructionsFor Windows XP Users Installing a WG511U Basic Setup Configure your WG511U Wireless Security Configuration Verify wireless connectivity to your network LED Descriptions For Windows 2000 & 98/Me Users Installing a WG511U Found New Hardware Wizard Configure your WG511U and save Profile Below Word Meaning WG511U Wireless Connection Indicators Interpreting the LED on the WG511U Interpreting System Tray Icon Colors Color Condition Description Troubleshooting Basic Tips Troubleshooting Frequently Asked Questions Basic Setup Using Configuration Profiles Chapter Netgear Smart Wireless WizardUnderstanding the Configuration Options Connecting to an Access Point in Infrastructure Mode How to Configure an Infrastructure Mode Profile Run the WG511U Smart Wireless WizardConfigure the wireless network settings Save your settings in a Profile Connecting to Another PC in Ad-hoc Mode Netgear WG511U Wireless PC Card in Computer-to-Computer Mode How to Configure an Ad-hoc Mode Network Configure the PC network settings Ad-Hoc Setting What’s on the Statistics Page? Understanding the Advanced Settings Chapter Wireless Security Configuration Understanding the Security Options Using WEP Security Basic Requirements for WEP WEP Security Encryption Key WEP Security Settings WorksheetWireless Network Name Ssid Configure the WEP settings How to Configure WEP Encryption SecurityConfigure the Network Name Ssid settings Using WPA-PSK Advanced Security Basic Requirements for WPA-PSK WPA-PSK Security Settings Worksheet How to Configure WPA-PSK Advanced Security Configure the WPA-PSK settings WPA-PSK settings screen Wireless Security Configuration Appendix a Technical Specifications FCC, CE Technical Specifications Infrastructure Mode Appendix B Wireless Networking BasicsWireless Networking Overview Wireless Channels Ad Hoc Mode Peer-to-Peer WorkgroupNetwork Name Extended Service Set Identification Essid 802.11b/g Wireless Channels 802.11a Legal Power Output and Wireless Channels WG511U user can use thirteen channels in non-turbomode Wireless Security Overview WPA WEP Authentication WEP Overview802.1x Cisco Leap Authentication Open System Steps WEP Keys Bit WEP How to Use WEP Parameters WEP Key Configuration 802.1x Port Based Network Access Control Figure B-4 802.1x authentication WPA Wireless Security How Does WPA Compare to WEP? What are the Key Features of WPA Security? How Does WPA Compare to Ieee 802.11i? Figure B-5 WPA Overview Figure B-6 WPA/802.1x Authentication Sequence Wireless Networking Basics Michael WPA Data Encryption Key ManagementTemporal Key Integrity Protocol Tkip AES Support Is WPA Perfect?Product Support for WPA Wireless network adapters Wireless client programs Wireless Networking Basics Appendix C Preparing Your PCs for Network Access Configuring Windows 98 and Me for TCP/IP NetworkingInstall or Verify Windows Networking Components Preparing Your Computers for TCP/IP Networking Preparing Your PCs for Network Access Choose Settings, and then Control Panel Locate your Network Neighborhood icon Primary Network Logon is set to Windows logon Selecting Windows’ Internet Access Method Verifying TCP/IP Properties Configuring Windows 2000 or XP for TCP/IP Networking Dhcp Configuration of TCP/IP in Windows XP or Dhcp Configuration of TCP/IP in Windows XP TCP/IP details are presented on Support tab Right click on Local Area Connection and select Properties Dhcp Configuration of TCP/IP in WindowsVerify that Obtain an IP address Obtain an IP address automatically is selected Verifying TCP/IP Properties for Windows XP or Preparing Your PCs for Network Access Glossary List of Glossary Terms Adsl EAP Internet service provider Megabits per second Ssid WEP Glossary Index Numerics