HP ProCurve 420 Management And Configuration Manual page 129

Table 5-1. Summary of Wireless Security
Security Mechanism
Static WEP Keys
Dynamic WEP Keys with Requires 802.1X client support in
802.1X
MAC Address Filtering Uses the MAC address of client
WPA with 802.1X
WPA PSK Mode
Client Support
Built-in support on all 802.11b and
802.11g devices
system or by add-in software
(support provided in Windows 2000
SP3 or later and Windows XP)
network card
Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP)
Requires WPA-enabled system and
network card driver
(native support provided in
Windows XP)
When you have decided which security mechanisms to implement in your
network, refer to the following tables for a summary of the access point
configuration procedures.
For more details on security configurations that are possible using the CLI,
see "CLI: Configuring Security Settings" on page 5-81.
Configuring Wireless Security
Implementation Considerations
• Provides only weak security
• Requires manual key management
• Provides dynamic key rotation for improved WEP
security
• Requires configured RADIUS server
• 802.1X EAP type may require management of digital
certificates for clients and server
• Provides only weak user authentication
• Management of authorized MAC addresses
• Can be combined with other methods for improved
security
• Optional configured RADIUS server
• Provides robust security in WPA-only mode
• Offers support for legacy WEP clients, but with
increased security risk
• Requires configured RADIUS server
• 802.1X EAP type may require management of digital
certificates for clients and server
• Provides good security in small networks
• Requires manual management of pre-shared key
Access Point Configuration
5-71