Encryption - NETGEAR ProSafe WFS709TP Software Administration Manual

Smart wireless switch

Hide thumbs Also See for ProSafe WFS709TP:

Hardware installation manual (36 pages)

Quick start manual (10 pages)

Datasheet (3 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

page of 222

/ 222
Contents
Table of Contents
Bookmarks

Table of Contents

WFS709TP ProSafe Smart Wireless Switch Software Administration Manual

Encryption

The Layer 2 encryption option you can select depends upon the authentication method chosen.

Table 1-1

lists the authentication methods available, with their corresponding encryption options.

Table 1-1. Encryption Options by Authentication Method

Authentication Method

None

802.1x

WPA or WPA-PSK only

WPA2 or WPA2-PSK only

Combination of WPA or WPA-PSK and WPA2 or

WPA2-PSK

You can configure the following data encryption options for the WLAN:

•

Null. No encryption is used and packets passing between the wireless client and WFS709TP

are in clear text.

•

Wired Equivalent Protocol (WEP). Defined by the original IEEE 802.11 standard, WEP

uses the RC4 stream cipher with 40-bit and 128-bit encryption keys. The management and

distribution of WEP keys is performed outside of the 802.11 protocol. There are two forms of

WEP keys:

–

Static WEP requires you to manually enter the key for each client and on the WFS709TP.

–

Dynamic WEP allows the keys to be automatically derived for each client for a specific

authentication method during the authentication process. Dynamic WEP requires 802.1x

authentication.

•

Temporal Key Integrity Protocol (TKIP). TKIP ensures that the encryption key is changed

for every data packet. You specify TKIP encryption for WPA and WPA-PSK authentication.

•

Advanced Encryption Standard (AES). AES is an encryption cipher that uses the Counter-

mode CBC-MAC (Cipher Block Chaining-Message Authentication Code) Protocol (CCMP)

mandated by the IEEE 802.11i standard. AES-CCMP is specifically designed for IEEE 802.11

encryption and encrypts parts of the 802.11 MAC headers as well as the data payload. You can

specify AES-CCMP encryption with WPA2 or WPA2-PSK authentication.

•

Mixed TKIP/AES-CCM. This option allows the WFS709TP to use TKIP encryption with

WPA or WPA-PSK clients and use AES encryption with WPA2 or WPA2-PSK clients. Mixed

TKIP/AES-CCM allows you to deploy the system in environments containing existing

WLANs that use different authentication and encryption methods.

1-10

Encryption Option

Null or Static WEP

Dynamic WEP

TKIP

AES

Mixed TKIP/AES

v1.0, June 2007

Overview of the WFS709TP

Table of Contents

Encryption - NETGEAR ProSafe WFS709TP Software Administration Manual

Encryption

Related Manuals for NETGEAR ProSafe WFS709TP

Related Content for NETGEAR ProSafe WFS709TP

Table of Contents