hit counter script

Additional Wep Key Security Features - Cisco Aironet CB21AG Installation And Configuration Manual

Cisco aironet 802.11a/b/g wireless lan client adapters
Hide thumbs Also See for Aironet CB21AG:
Table of Contents

Advertisement

Chapter 5
Configuring the Client Adapter
The process takes place as follows:
1.
2.
3.
4.
5.
6.
This feature does not need to be enabled on the client adapter or access point; it is supported
Note
automatically by both devices. However, the access points must use the specified firmware versions
or later.

Additional WEP Key Security Features

The three security features discussed in this section (MIC, TKIP, and broadcast key rotation) are
designed to prevent sophisticated attacks on your wireless network's WEP keys. These features do not
need to be enabled on the client adapter; they are supported automatically in the client adapter software.
However, they must be enabled on the access point.
Refer to the documentation for your access point for instructions on enabling these security features.
Note
Message Integrity Check (MIC)
MIC prevents bit-flip attacks on encrypted packets. During a bit-flip attack, an intruder intercepts an
encrypted message, alters it slightly, and retransmits it, and the receiver accepts the retransmitted
message as legitimate. The MIC adds a few bytes to each packet to make the packets tamper-proof.
The Advanced Status window indicates if MIC is being used, and the Advanced Statistics window
provides MIC statistics.
Temporal Key Integrity Protocol (TKIP)
This feature, also referred to as WEP key hashing, defends against an attack on WEP in which the
intruder uses the initialization vector (IV) in encrypted packets to calculate the WEP key. TKIP removes
the predictability that an intruder relies on to determine the WEP key by exploiting IVs. It protects both
unicast and broadcast WEP keys.
TKIP is enabled automatically when WPA is enabled.
Note
Broadcast Key Rotation
When you enable broadcast WEP key rotation, the access point provides a dynamic broadcast WEP key
and changes it at the interval you select.
Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide
OL-4211-05
A client with a LEAP profile attempts to associate to access point A.
Access point A does not handle LEAP authentication successfully, perhaps because the access point
does not understand LEAP or cannot communicate to a trusted LEAP authentication server.
The client records the MAC address for access point A and the reason why the association failed.
The client associates successfully to access point B.
The client sends the MAC address of access point A and the reason code for the failure to access
point B.
Access point B logs the failure in the system log.
Setting Security Parameters
5-21

Advertisement

Table of Contents
loading

This manual is also suitable for:

Aironet pi21ag

Table of Contents