CTR is an attribute of the encryption method.
CBC-MAC is used for message integrity and authentication. CCMP uses an AES
(Advanced Encryption Standard) block cipher encryption algorithm.
WPA represents a significant improvement over the older WEP standards. The final
802.11i standard (implemented by the Wi-Fi Alliance as WPA2) defines even stronger
security methods, but the greater computational burdens of CCMP/AES require specific
network hardware. For many networks, WPA with TKIP continues to be a viable choice.
The expense and complex administration required for a full implementation of 802.1x
can be beyond the reach of smaller networks, making the alternative of pre-shared keys
(PSKs) more welcome there.
802.1x is a separate IEEE protocol used in support of the Extensible Authentication
Protocol (EAP). In WLANs, 802.1x is used with EAP over LAN (EAPoL). The 802.11
standard specifies the use of 802.1x, but many details of the authentication services and
methods used are left to the implementor. In general, 802.1x involves the use of a separate
authentication server (such as Remote Access Dial-In User Service (RADIUS)) and valid
certificates (or other secure tokens of authenticity) for each network node.
Pages:
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116