1. Manuals
  2. Brands
  3. HP Manuals
  4. Wireless Access Point
  5. ProCurve 420
  6. Management and configuration manual

HP ProCurve 420 Management And Configuration Manual page 128

Hide thumbs Also See for ProCurve 420:
Table of Contents

Advertisement

Access Point Configuration
Configuring Wireless Security
5-70
starts with a master (temporal) key for each user session and then
mathematically generates other keys to encrypt each data packet. TKIP
provides further data encryption enhancements by including a message
integrity check for each packet and a re-keying mechanism, which peri­
odically changes the master key.
WPA Pre-Shared Key (PSK) Mode: For enterprise deployment, WPA
requires a RADIUS authentication server to be configured on the wired
network. However, for small office networks that may not have the
resources to configure and maintain a RADIUS server, WPA provides a
simple operating mode that uses just a pre-shared password for network
access. The Pre-Shared Key mode uses a common password for user
authentication that is manually entered on the access point and all wire­
less clients. The PSK mode uses the same TKIP packet encryption and key
management as WPA in the enterprise, so it provides a robust and manage-
able alternative for small networks.
Mixed WPA and WEP Client Support: WPA enables the access point
to indicate its supported encryption and authentication mechanisms to
clients using its beacon frame. WPA-compatible clients can likewise
respond to indicate their WPA support. This enables the access point to
determine which clients are using WPA security and which are using
legacy WEP. The access point uses TKIP unicast data encryption keys for
WPA clients and WEP unicast keys for WEP clients. The global encryption
key for multicast and broadcast traffic must be the same for all clients,
therefore it restricts encryption to a WEP key.
Advanced Encryption Standard (AES) Support: WPA specifies AES
encryption as an optional alternative to TKIP and WEP. AES provides very
strong encryption using a completely different ciphering algorithm to
TKIP and WEP. The developing IEEE 802.11i wireless security standard
has specified AES as an eventual replacement for TKIP and WEP.
However, because of the difference in ciphering algorithms, AES requires
new hardware support in client network cards that is currently not widely
available. The access point includes AES support as a future security
enhancement.

Advertisement

Table of Contents
loading

Related Manuals for HP ProCurve 420

Related Products for HP ProCurve 420

Table of Contents