Enabling Additional Wep Security Features; Enabling Message Integrity Check (Mic) - Cisco Aironet 1200 Series Software Configuration Manual
Hide thumbs
Also See for Aironet 1200 Series:
- Hardware installation manual (110 pages) ,
- Upgrade manual (36 pages) ,
- Software configuration manual (284 pages)
Table of Contents
Advertisement
Chapter 4
Security Setup
Note
Enabling Additional WEP Security Features
Enabling Message Integrity Check (MIC)
Note
OL-2159-01
Table 4-2
SNMP Variable Settings and Corresponding WEP Levels
SNMP Variable
dot11ExcludeUnencrypted.2
awcDot11AllowEncrypted.2
Access points do not use the SNMP variable dot11PrivacyInvoked, so it is always
set to disabled.
You can enable three advanced security features to protect against sophisticated
attacks on your wireless network's WEP keys. This section describes how to set
up and enable these features:
Enabling Message Integrity Check (MIC)
•
Enabling Temporal Key Integrity Protocol (TKIP)
•
•
Enabling Broadcast WEP Key Rotation
MIC prevents attacks on encrypted packets called bit-flip attacks. During a bit-flip
attack, an intruder intercepts an encrypted message, alters it slightly, and
retransmits it, and the receiver accepts the retransmitted message as legitimate.
The MIC, implemented on both the access point and all associated client devices,
adds a few bytes to each packet to make the packets tamper-proof.
You must set up and enable WEP with full encryption before MIC takes effect.
Cisco Aironet 1200 Series Access Point Software Configuration Guide
Enabling Additional WEP Security Features
WEP Full
WEP Off
true
false
true
false
WEP Optional
false
true
4-13
Hide quick links:
Advertisement
Table of Contents
