Manuals / NETGEAR / Computer Equipment / Network Card

NETGEAR WPN111 How Does WPA Compare to IEEE 802.11i?, What are the Key Features of WPA Security?

Models: WPN111

1 87

Download 87 pages 60.77 Kb

Page 61

How Does WPA Compare to IEEE 802.11i?

User Manual for the NETGEAR RangeMax™ Wireless USB 2.0 Adapter WPN111

For 802.11, WEP encryption is optional. For WPA, encryption using Temporal Key Integrity Protocol (TKIP) is required. TKIP replaces WEP with a new encryption algorithm that is stronger than the WEP algorithm, but that uses the calculation facilities present on existing wireless devices to perform encryption operations. TKIP provides important data encryption enhancements including a per-packet key mixing function, a message integrity check (MIC) named Michael, an extended initialization vector (IV) with sequencing rules, and a re-keying mechanism. Through these enhancements, TKIP addresses all of known WEP vulnerabilities.

How Does WPA Compare to IEEE 802.11i?

WPA will be forward compatible with the IEEE 802.11i security specification currently under development. WPA is a subset of the current 802.11i draft and uses certain pieces of the 802.11i draft that are ready to bring to market today, such as 802.1x and TKIP. The main pieces of the 802.11i draft that are not included in WPA are secure IBSS (Ad-Hoc mode), secure fast handoff (for specialized 802.11 VoIP phones), as well as enhanced encryption protocols such as AES-CCMP. These features are either not yet ready for market or will require hardware upgrades to implement.

What are the Key Features of WPA Security?

The following security features are included in the WPA standard:

•WPA Authentication

•WPA Encryption Key Management

–Temporal Key Integrity Protocol (TKIP)

–Michael message integrity code (M I C )

–AES Support

•Support for a Mixture of WPA and WEP Wireless Clients

These features are discussed below.

WPA addresses most of the known WEP vulnerabilities and is primarily intended for wireless infrastructure networks as found in the enterprise. This infrastructure includes stations, access points, and authentication servers (typically RADIUS servers). The RADIUS server holds (or has access to) user credentials (e.g., user names and passwords) and authenticates wireless users before they gain access to the network.

W ire le ss N e tworkin g B a sics

B -1 5

202-10076-01

Image 61

NETGEAR WPN111 user manual How Does WPA Compare to IEEE 802.11i?, What are the Key Features of WPA Security?

Contents

202-10076-01 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111NETGEAR, I n c 2 02 -1 007 6 -01 V e rsion v1 . 0 F e b ru a ry 2Statement of Conditions Technical SupportCertificate of the Manufacturer/Importer VCCI StatementFCC Guidelines for Human Exposure FCC Information to UserDeclaration Of Conformity Regulatory Compliance InformationCanadian Department of Communications Radio Interference Export RestrictionsRegulations 202-10076-01Basic Setup ContentsConfiguration Chapter 1 About This ManualWireless Networking Basics Troubleshooting4 -1 4 -1Index Appendix C Preparing Your PCs for Network AccessC on te n ts 202-10076-01202-10076-01 viiiC on te n ts Audience, Scope, Conventions Chapter About This ManualA b ou t T h is M a n u a l How to Print this ManualChapter Introduction Key FeaturesAbout the WPN111 What’s in the Box? A Road Map for ‘How to Get There From Here’A Road Map for How to Get There From Here User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111I n trod u ction 202-10076-01A Road Map for How to Get There From Here User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 If I Want To?A Road Map for How to Get There From Here User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111I n trod u ction 202-10076-01A Road Map for How to Get There From Here User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 If I Want To?What You Need Before You Begin Chapter Basic SetupVerifying System Requirements Observing Location and Range Guidelines Two Basic Operating ModesBasic Installation Instructions WPN111 Default Wireless Configuration Settingsc. Click Install Driver and Utility For Windows XP Users Installing a WPN111Install the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111 Configure your WPN111 Verify wireless connectivity to your network For Windows 2000 Users Installing a WPN111 sp e e d is 1 F ou n d N e w H a rd wa re W iza rdp ort is 4 8 0 M b p s W P N 1 1 1 S yste m Tra y I conConfigure your WPN111 a n d sa ve th e P rofile Interpreting the LED on the WPN111 WPN111 Wireless Connection IndicatorsStatus LED User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111 Interpreting System Tray Icon Colors202-10076-01 ColorUnderstanding the Configuration Options Chapter ConfigurationUsing Configuration Profiles How to Configure an Infrastructure Mode Profile Connecting to an Access Point in Infrastructure Mode1. Run the WPN111 Configuration Utility 3. Save your settings in a Profile 2. Configure the wireless Network settingsa. Type a descriptive name for the Profile in the “Profiles” field How to Configure an Ad-hoc Mode Profile Connecting to Another PC in Ad-hoc Mode4. Verify wireless connectivity to your network 1. Run the WPN111 Configuration Utility3. Configure the PC network settings 2. Save your settings in a ProfileHow to Start a Computer-to-Computer Ad-Hoc Network Identifying the Wireless Network Name SSID and WEP Security Settings Enabling Wireless Security Features1. Run the WPN111 Configuration Utility How to Configure WEP Encryption Security2. Configure the Security settings Figure 4-5 WEP security3. Save your settings in a Profile How to Configure WPA-PSK Encryption Security4. Select the WEP encryption strength you will use. The choices are Statistics Page Figure 4-7 Advanced Settings page Advanced Settings PageRTS/CTS Threshold RTS is request to send and CTS is clear to send their purpose is to avoid collisions. RTS/CTS will be enabled if the data frame size is larger than the threshold value set here. The maximum frame size is 2346 octets, so if the threshold is 2346, RTS/CTS will be disabled Basic Tips Chapter TroubleshootingGeneral Questions Frequently Asked QuestionsAd Hoc mode is not working correctly I cannot connect to the AP that I want from the Networks browser list New Hardware Wizard appears after installation has completedUser Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111 How to get a PDF copy of the ManualT rou b le s h ootin g T e ch n ica l S p e cifica tion s Appendix A Technical Specifications202-10076-01 202-10076-01 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111T e ch n ica l S p e cifica tion s Wireless Networking Overview Appendix B Wireless Networking BasicsInfrastructure Mode Network Name Extended Service Set Identification ESSID Ad Hoc Mode Peer-to-Peer WorkgroupWireless Channels Table B-1 802.11b/g Wireless Channels802.11b/g Radio Frequency Channels ChannelTable B-2 802.11a Legal Power Output and Wireless Channels802.11a Radio Frequency Channels U-NII Band802.11a Turbo Mode Off Radio Frequency Channels User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111Turbo Mode OFF Figure B-1 IEEE 802.11a Channel AllocationsWPA-PSK Wireless Security OverviewWEP Overview WEP Authentication802.1x Cisco LEAP802.11 Authentication Shared Key Steps 802.11 Authentication Open System Steps1 Authentication request sent to AP 2 AP authenticates Access Point AP64-bit WEP WEP Keys128-bit WEP WEP Key Configuration How to Use WEP ParametersB -1 802.1x Port Based Network Access Control2. The access point replies with an EAP-request identity message B -1 WPA Wireless SecurityHow Does WPA Compare to WEP? How Does WPA Compare to IEEE 802.11i? What are the Key Features of WPA Security?Login Authentication Wireless NetworkFigure B-5 WPA Overview C lie n t with a W P A -e n a b le d wire le ss a d a p te r a n d Figure B-6 WPA/802.1x Authentication Sequence2. The access point replies with an EAP-request identity message Temporal Key Integrity Protocol TKIP WPA Data Encryption Key ManagementMichael Product Support for WPA Is WPA Perfect?AES Support User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111 Wireless network adapters Wireless client programsW ire le ss N e tworkin g B a sics 202-10076-01B -2 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 Configuring Windows 98 and Me for TCP/IP Networking Appendix C Preparing Your PCs for Network AccessInstall or Verify Windows Networking Components Preparing Your Computers for TCP/IP Networking2. Double-click the Network icon Choose Settings, and then Control Panel Enabling DHCP in Windows 98 and MeLocate your Network Neighborhood icon User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111 Verify the following settings as shownClient for Microsoft Network exists Ethernet adapter is present TCP/IP is presentVerifying TCP/IP Properties Selecting Windows’ Internet Access MethodInstall or Verify Windows Networking Components Configuring Windows 2000 or XP for TCP/IP NetworkingDHCP Configuration of TCP/IP in Windows XP DHCP Configuration of TCP/IP in Windows XP orLocate your Network Neighborhood icon Click the Properties button to view details about the connection Verify that Obtain an IP address DHCP Configuration of TCP/IP in WindowsRight click on Local Area Connection and select Properties. Obtain an IP address automatically is selected 3. Type ipconfig /all Verifying TCP/IP Properties for Windows XP orC -1 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 G los s a ry Glossary202-10076-01 Dynamic Host Configuration Protocol User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 Domain NameInternet service provider User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111202-10076-01 202-10076-01 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111router Routing Information ProtocolWi-Fi User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111Windows Internet Naming Service Wireless Network Name SSID202-10076-01 User Manual for the NETGEAR RangeMax Wireless USB 2.0 Adapter WPN111G los s a ry Numerics Index