6.2 Security-related changes in the TGr Fast BSS Transition Amendment
The TGr amendment adds use of AES-128-CMAC [30] as a MIC algorithm, used to
provide data authenticity of the data exchanged to establish Fast Transition security
associations. In the TGr Fast BSS Transition amendment, the contents of the 4-Way
Handshake messages, with additional optional Quality of Service information are
essentially overloaded into the 802.11 Authentication and Association frames. A new IEEE
802.11 Authentication type is defined for the Fast Transition protocol. The contents of
information elements included in the Authentication and Association frames are protected
using AES-128-CMAC. Also, the allowable MIC algorithms used with 4-Way Handshake
messages are extended to include AES-128-CMAC.
7.6.3 Security in the TGs Mesh Amendment
The TGs amendment will define mesh operation for IEEE 802.11 WLAN systems (also see
Section 16.4.5). New security mechanisms must be defined which authenticate Mesh Point
to Mesh Point links. Multiple credential types should be supported for authentication,
including pre-shared keys and digital certificates. While the first application of mesh
networks that typically comes to mind is to provide wireless connectivity between Access
Point devices, mesh functionality can be used to interconnect any set of WLAN devices.
Pages:
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405