How Does WPA Compare to Ieee 802.11i? | NETGEAR WPN111 instruction

User Manual for the NETGEAR RangeMax™ Wireless USB 2.0 Adapter WPN111

For 802.11, WEP encryption is optional. For WPA, encryption using Temporal Key Integrity Protocol (TKIP) is required. TKIP replaces WEP with a new encryption algorithm that is stronger than the WEP algorithm, but that uses the calculation facilities present on existing wireless devices to perform encryption operations. TKIP provides important data encryption enhancements including a per-packet key mixing function, a message integrity check (MIC) named Michael, an extended initialization vector (IV) with sequencing rules, and a re-keying mechanism. Through these enhancements, TKIP addresses all of known WEP vulnerabilities.

How Does WPA Compare to IEEE 802.11i?

WPA will be forward compatible with the IEEE 802.11i security specification currently under development. WPA is a subset of the current 802.11i draft and uses certain pieces of the 802.11i draft that are ready to bring to market today, such as 802.1x and TKIP. The main pieces of the 802.11i draft that are not included in WPA are secure IBSS (Ad-Hoc mode), secure fast handoff (for specialized 802.11 VoIP phones), as well as enhanced encryption protocols such as AES-CCMP. These features are either not yet ready for market or will require hardware upgrades to implement.

What are the Key Features of WPA Security?

The following security features are included in the WPA standard:

•WPA Authentication

•WPA Encryption Key Management

–Temporal Key Integrity Protocol (TKIP)

–Michael message integrity code (M I C )

–AES Support

•Support for a Mixture of WPA and WEP Wireless Clients

These features are discussed below.

WPA addresses most of the known WEP vulnerabilities and is primarily intended for wireless infrastructure networks as found in the enterprise. This infrastructure includes stations, access points, and authentication servers (typically RADIUS servers). The RADIUS server holds (or has access to) user credentials (e.g., user names and passwords) and authenticates wireless users before they gain access to the network.

W ire le ss N e tworkin g B a sics

B -1 5

202-10076-01

Image 61

NETGEAR WPN111 user manual How Does WPA Compare to Ieee 802.11i?, What are the Key Features of WPA Security?

Contents

NETGEAR, I n c Technical Support FCC Information to User Ta n d a rd s Teste d to C om p ly Contents Troubleshooting Index Viii Audience, Scope, Conventions Chapter About This Manual How to Print this Manual Chapter Introduction Key FeaturesAbout the WPN111 What’s in the Box? Road Map for ‘How to Get There From Here’ Wire le ss On n e ct to a E n tify th e Wire le ss n e tworkWire le ss n etwork To le a rn a b ou t wire le ss Ve rify m y n e twork Ca b le or D S L se rvice Twork Ctiva te m yCon n e ction Rovid e rs For you r ve rsion of W in d ows Rowse r su ch a s Twork Con n e ct to th e wire le ss Wire d n etwork Wire le ss a n dE P C I a m u sin g to Igh b orh ood Com b in e d Wire le ss a n d Com p u te r su p p ort grou p sTwork n e e d s to b e D P rin t S h a rin g What You Need Before You Begin Chapter Basic SetupVerifying System Requirements Observing Location and Range Guidelines Two Basic Operating Modes Basic Installation Instructions WPN111 Default Wireless Configuration Settings Click Install Driver and Utility For Windows XP Users Installing a WPN111Sta llS h ie ld W iza rd Ort, you V1 typ eIs 1 4 M b p s wh e re a s th e With a W in d ows X P L ogo te stin g Ste p s, click th e H e lp b u tton in th e W P N 1 1 Th e se 202-10076-01 N 1 1 1 R e sou rce C D Sta llS h ie ld W iza rd For Windows 2000 Users Installing a WPN111 Sp e e d is 1 Ou n d N e w H a rd wa re W iza rdOrt is 4 8 0 M b p s N 1 1 1 S yste m Tra y I con Tility Interpreting the LED on the WPN111 WPN111 Wireless Connection IndicatorsOr re se t Interpreting System Tray Icon Colors Understanding the Configuration Options Chapter ConfigurationUsing Configuration Profiles How to Configure an Infrastructure Mode Profile Connecting to an Access Point in Infrastructure ModeRun the WPN111 Configuration Utility Save your settings in a Profile Configure the wireless Network settings How to Configure an Ad-hoc Mode Profile Connecting to Another PC in Ad-hoc ModeVerify wireless connectivity to your network Windows Run program dialog box Configure the PC network settings Ping test results How to Start a Computer-to-Computer Ad-Hoc Network Enabling Wireless Security Features Configure the Security settings How to Configure WEP Encryption Security How to Configure WPA-PSK Encryption Security Advanced Security Statistics Advanced Settings Advanced Settings 202-10076-01 Basic Tips Chapter Troubleshooting General Questions Frequently Asked Questions New Hardware Wizard appears after installation has completed Rou b le s h ootin g Appendix a Technical Specifications Ch n ica l S p e cifica tion s Wireless Networking Overview Appendix B Wireless Networking BasicsInfrastructure Mode Network Name Extended Service Set Identification Essid Ad Hoc Mode Peer-to-Peer WorkgroupWireless Channels 802.11b/g Wireless Channels For U S Re qu e n cy G H z 5 5 2 5 5 2For C a n a d a W for E u rop e WPN111 user can use thirteen channels in non-turbomode 152 Wireless Security Overview160 WEP Overview WEP Authentication802.1x Cisco Leap Authentication Open System Steps Bit WEP WEP Keys WEP Key Configuration How to Use WEP Parameters 802.1x Port Based Network Access Control Figure B-4 802.1x authentication WPA Wireless Security How Does WPA Compare to WEP? How Does WPA Compare to Ieee 802.11i? What are the Key Features of WPA Security? Figure B-5 WPA Overview Figure B-6 WPA/802.1x Authentication Sequence 202-10076-01 Temporal Key Integrity Protocol Tkip WPA Data Encryption Key ManagementMichael Product Support for WPA Is WPA Perfect?AES Support Wireless network adapters Wireless client programs 202-10076-01 Configuring Windows 98 and Me for TCP/IP Networking Appendix C Preparing Your PCs for Network AccessInstall or Verify Windows Networking Components Preparing Your Computers for TCP/IP Networking Re p a rin g Y ou r P C s for N e twork a cce ss Enabling Dhcp in Windows 98 and Me Choose Settings, and then Control PanelLocate your Network Neighborhood icon Primary Network Logon is set to Windows logon Verifying TCP/IP Properties Selecting Windows’ Internet Access Method Configuring Windows 2000 or XP for TCP/IP Networking Dhcp Configuration of TCP/IP in Windows XP Dhcp Configuration of TCP/IP in Windows XP or TCP/IP details are presented on Support tab Verify that Obtain an IP address Dhcp Configuration of TCP/IP in Windows Obtain an IP address automatically is selected Verifying TCP/IP Properties for Windows XP or 202-10076-01 Glossary DSL Internet service provider Ssid Wins 202-10076-01 Numerics Index