7.2 Current Application Solutions
Strong link-layer security is now available in WLAN systems, as a result of the broad
implementation and deployment of IEEE 802.11 Advanced Encryption Standard ??“ Counter
mode with Cipher-block-chaining Message authentication code Protocol (AES-CCMP)
based systems. In what now seems to be almost ancient history, Wired Equivalent Privacy
(WEP) encryption defined by IEEE 802.11 was identified as not providing ???industrialstrength???
link security. Papers by Borisov [1] and Walker [2] discussed the vulnerabilities
of WEP. The results of Fluhrer et al. [3] enabled easy-to-mount passive attacks [4] on
WEP, which have been commoditized in attack tools.
In response to the identified flaws on WEP, customers deployed overlay VPN
solutions, while the IEEE 802.11 Working Group completed work on secure link layer
protocols. The Wi-Fi Alliance [5] provided Wi-Fi1 Protected Access (WPA)
interoperability certification for the Temporal Key Encryption Protocol (TKIP), which was
deployable on legacy WEP hardware. This was followed in 2004 with interoperability
certification of AES-CCMP based link security, termed WPA2.
Pages:
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387