Motorola CB3000 User Manual page 34

3-10 CB3000 Client Bridge User's Guide
Passphrase Algorithm
Passphrase
4. Click Apply
3.1.3.3 Configuring WPA1 (TKIP) Security Settings
WPA, referred to as WPA1 within the CB3000 console, provides more sophisticated data encryption than
WEP. The CB3000's WPA encryption scheme uses Temporal Key Integrity Protocol (TKIP). TKIP addresses
WEP's weaknesses with a re-keying mechanism, a per-packet mixing function, a message integrity check,
and an extended initialization vector with sequencing rules.
Also, WPA provides strong user authentication based on 802.1x EAP. The CB3000 supports three EAP types
suitable for deployments with wireless LANs. They are:
• TLS – Transport Layer Security
• TTLS – Tunneled Transport Layer Security
• PEAP – Protected EAP
For overview information on WPA1, see Appendix D, WPA1 (TKIP) Security.
Select the passphrase algorithm used to encrypt the passphrase.
• Symbol PassKey – With Symbol's proprietary algorithm the CB3000 can
share a common passkey with other Symbol clients capable of decoding
it. The CB3000 decodes the PassKey into a set of 4 WEP keys using MD5
algorithms. The WEP keys display as alphanumeric text in the key fields
until saved or the user navigates away from the WEP screen. Like a
passphrase, the PassKey provides an easy to remember way of entering
WEP key data without having to manually enter the keys each time WEP
keys are created.
• Generic PassPhrase – A passphrase used as a standard means of
creating WEP keys between the Symbol CB3000 and non-Symbol clients.
The CB3000 decodes the passphrase into a set of 4 WEP keys, with the
length depending on the 64 or 128 bit key length. The WEP keys display
as alphanumeric text in the key fields until saved or the user navigates
away from the WEP screen. The PassPhrase provides an easy to
remember way of entering WEP key data without having to manually
enter the keys each time WEP keys are created.
Note: Both the CB3000 and its networked devices are required to use the
same key and key length to interoperate.
Specify a 4 to 32 character passphrase, then click the
button.
The CB3000, other proprietary routers and Symbol devices use an algorithm
to convert the ASCII passphrase string to the same hexadecimal number.
This conversion is not required for a wireless connection. Wireless devices
without Symbol adapters need to use WEP keys manually configured as
hexadecimal numbers.
to apply and save the settings, or Cancel to exit the screen without saving your changes.
Generate Keys