Table of Contents
Advertisement
3e–527A3 Wireless Access Point – 8 Port
AES and 3DES
The Advanced Encryption Standard (AES) was selected by National
Institute of Standards and Technology (NIST) in October 2000 as an up-
grade from the previous DES standard. AES uses a 128-bit block cipher
algorithm and encryption technique for protecting computerized infor-
mation. It has the ability to use even larger 192-bit and 256-bit keys, if
desired.
3DES is also incorporated on the 3e–527A3 . 3DES is modeled on the
older DES standard but encrypts data three times over. Triple-DES uses
more CPU resources than AES because of the triple encryption.
If you intend to use AES or 3DES, you must purchase the 3eTI ad-
vanced Crypto Client software (3e-010F, 3e-010F-A-2, or 3e-010F-C-2) for
each client that will be included in the WLAN. We sell the 3e-010F soft-
ware with the 3e-110 PC Card.
The 3e–527A3 uses AES-CCMP in WPA mode and AES-ECB (or 3DES)
for FIPS 140-2 mode and for bridging.
MAC Address Filtering
The MAC address, short for Media Access Control address, is a hard-
ware address that uniquely identifies each node of a network. In IEEE 802
networks, the Data Link Control (DLC) layer of the OSI Reference Model
is divided into two sub-layers: the Logical Link Control (LLC) layer and the
Media Access Control (MAC) layer. The MAC layer interfaces directly with
the network media. Consequently, each type of network media requires a
unique MAC address.
Authentication is the process of proving a client's identity. The
3e–527A3 access points, if set up to use MAC address filtering, detect
an attempt to connect by a client and compare the client's MAC address
to those on a predefined MAC address filter list. Only client addresses
found on the list are allowed to associate. MAC addresses are pre-as-
signed by the manufacturer for each wireless card.
DHCP Server
The DHCP function is accessible only from the local LAN port to be
used for initial configuration.
Operator Authentication and Management
Authentication mechanisms are used to authenticate an operator ac-
cessing the device and to verify that the operator is authorized to assume
the requested role and perform services within that role.
Access to the management screens for the 3e–527A3 requires knowl-
edge of the assigned operator ID and Password. The Factory defaults are:
• ID: CryptoOfficer
• Password: CryptoFIPS
29000152-0001 B
Chapter 1: Introduction
7
Advertisement
Table of Contents
