ZyXEL Communications NWA-3550, NWA-3500 149

Chapter 10 Wireless Security Screen

•802.1x-Only.This is a standard that extends the features of IEEE 802.11 to support extended authentication. It provides additional accounting and control features. This option does not support data encryption.

•802.1x-Static64.This provides 802.1x-Only authentication with a static 64bit WEP key and an authentication server.

•802.1x-Static128. This provides 802.1x-Only authentication with a static 128bit WEP key and an authentication server.

•WPA. Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard.

•WPA2. WPA2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA.

•WPA2-MIX.This commands the NWA to use either WPA2 or WPA depending on which security mode the wireless client uses.

•WPA2-PSK. This adds a pre-shared key on top of WPA2 standard.

•WPA2-PSK-MIX. This commands the NWA to use either WPA-PSK or WPA2- PSK depending on which security mode the wireless client uses.

Passphrase

A passphrase functions like a password. In WEP security mode, it is further converted by the NWA into a complicated string that is referred to as the “key”. This key is requested from all devices wishing to connect to a wireless network.

PSK

The Pre-Shared Key (PSK) is a password shared by a wireless access point and a client during a previous secure connection. The key can then be used to establish a connection between the two parties.

Encryption

Encryption is the process of converting data into unreadable text. This secures information in network communications. The intended recipient of the data can “unlock” it with a pre-assigned key, making the information readable only to him. The NWA when used as a wireless client employs Temporal Key Integrity Protocol (TKIP) data encryption.

EAP

Extensible Authentication Protocol (EAP) is a protocol used by a wireless client, an access point and an authentication server to negotiate a connection.

The EAP methods employed by the NWA when in Wireless Client operating mode are Transport Layer Security (TLS), Protected Extensible Authentication Protocol (PEAP), Lightweight Extensible Authentication Protocol (LEAP) and Tunneled Transport Layer Security (TTLS). The authentication protocol may either be

	149
NWA-3500/NWA-3550 User’s Guide	149