Wireless LAN security glossary

Wireless LAN security glossary
(1)WEP weak=static key+short IV 24bit reused+ weak RC4 implement.

(2)WPA=TKIP+802.1x(EAP)+MIC

(3)WPA subset of = 802.11i(AES encryption).

(4)802.1X is based on EAP which encompassess many types; like TLS,LEAP,SecureID,MD5, PEAP,SIM,TTLS. It has mutual authentication and key mtg. It is a authentication framework which requires 3 entities -wireless client, AP and radius.

(7) Cisco Wireless Security suite = 802.1X+LEAP+TKIP
i.e.

(i) 802.1X = mutual authentication + key mtg, but didn't specify any authentication algorithm.

(ii) LEAP =user-based authentication+dynamic WEP keys

(iii)TKIP=MIC+per packet keying+dynamic key rotation for broadcast and multicast.
MIC= for frames authenticity.
Per-packet Keying= each frame with unique WEP key
RC4 stream cipher, dynamic key encryption, 48bit IV. It uses diff key to encrypt each wireless packet.

Wireless LAN security glossary

802.1X IEEE 802.11 standard for authentication, which supports multiple authentication modes, including RADIUS, that can be used in wireless and wireline networks.

802.11i IEEE standards group effort that involves “fixing” perceived weakness in 802.1X and WEP (see below).

LEAP Lightweight Extensible Authentication Protocol, which includes Cisco’s proprietary extensions to 802.1X to share authentication data between Cisco Aironet wireless LAN access points and the Cisco Secure Access Control Server.

PEAP Protected Extensible Authentication Protocol, which was developed by Microsoft, Cisco and RSA Security, is now an IETF draft standard. PEAP encrypts authentication data using a tunneling method.

TKIP Temporal Key Integrity Protocol, which was developed by the IEEE 802.11i standards committee as a WEP improvement.

TTLS Tunneled Transport Layer Security, which was developed by Funk Software and Certicom, now is an IETF draft standard. It is an alternative to PEAP.

WEP Wired Equivalent Privacy, a wireless encryption standard, which was developed by the IEEE 802.11 standards committee.