Telecoms, Datacoms, Wireless, IoT


WPA - will it plug 'wireless' security holes?

5 November 2003 Telecoms, Datacoms, Wireless, IoT

Security still remains a major obstacle in the successful implementation of wireless LANs. Past efforts to solve this, have not been entirely successful. There is, however, a new security mechanism set to change this. In this article, Graham Vorster, chief technology officer of Duxbury Networking, discusses the benefits of the recently introduced WPA technology.

Since the inception of wireless technology, security has been a major concern and inhibitor of widespread industry adoption.

The wireless LAN industry's first crack at security - 802.11 wireless equivalent privacy [WEP] has already - though somewhat prematurely - been branded as a failure. Jim Geier, author of 'Wireless LANs', recently commented that WEP is so easy to break it is like having a plastic lock on your door.

"Although WEP can keep casual snoopers from accessing a wireless LAN, companies need and can do much better," he says.

One of the key flaws of WEP is that its encryption keys are static rather than dynamic. The problem with this scenario is that once an IT administrator wants to update the keys, he or she has to visit each machine, which is not feasible when dealing with a big network.

Introducing WPA

At the end of last year, the Wireless Fidelity (Wi-Fi) Alliance announced Wi-Fi Protected Access (WPA), a standards-based security mechanism that eliminates most 802.11 security issues.

Based on the still to be ratified 802.11i standard, WPA will be integrated into products within the next few months.

According to the Wi-Fi Alliance, one of the key advantages of WPA is that it enables the implementation of open wireless LAN security in public areas and hot spots such as universities - this has in the past not been possible with WEP.

And to demonstrate just how serious they are about the implementation of WPA, the Wi-Fi Alliance has mandated that by the end of this year the security mechanism will be a requirement for all new Wi-Fi certifications.

How WPA works

WPA features both temporal key integrity protocol [TKIP] and 802.1x mechanisms, which provide dynamic key encryption and mutual authentication for mobile clients.

Unlike WEP, it counters hacker intrusions by generating periodic and unique encryption keys for each of its users.

Companies can, for example, use WPA to interface with an authentication server, such as RADIUS [remote authentication dial-in user service] using 802.1x with EAP.

However, in the case of SOHOs [small office, home office] WPA does not require an authentication server, due to the technology's ability to operate in 'preshared key mode'.

Similar to WEP, a user's preshared key must match the one stored at the access point. An access point then uses the preshared key for authentication. If the key matches, access is given to the wired side of the access point.

Who will benefit from WPA?

It is believed that WPA will benefit legacy equipment the most. Companies can install it via software upgrades to Wi-Fi certified access points. These access points will then support a mixed environment of client devices, ones implementing WPA and others that do not.

But, one of the key benefits of WPA is that it is forward compatible with the 802.11i standard. When finally ratified, this standard will include advanced encryption standards (AES) as an option, which is said to be stronger that RC4.

One downfall of AES is that it will probably require the replacement of a legacy point because of the need for higher performing processors. 802.11i will, therefore, be targeted at new equipment.

Undoubtedly WPA is not an interim solution but a long-term step. It is set to provide excellent security and can already be implemented on existing technology.

With the new hardware requirements of 802.11i, WPA is likely to be the solution that lasts until you move to the next generation of hardware.

For more information contact Graham Vorster, Duxbury Networking, 011 646 3323, [email protected]





Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

SMT-mountable card connectors
Telecoms, Datacoms, Wireless, IoT
Würth Elektronik introduces four new SMT-mountable Nano SIM and microSD card connectors and expands its range with solutions for the smallest packages.

Read more...
Module for smart city and smart utility devices
iCorp Technologies Telecoms, Datacoms, Wireless, IoT
Quectel Wireless Solutions has launched the Quectel KCM0A5S, a high-performance Wi-SUN module designed for smart applications such as street lighting, precision agriculture, industrial IoT, smart meters and smart cities.

Read more...
Ultra-low-power wireless module
Altron Arrow Telecoms, Datacoms, Wireless, IoT
The STM32WBA5MMG from STMicroelectronics is an ultra-low-power, small form factor, certified 2,4 GHz wireless module that supports Bluetooth LE, Zigbee 3.0, OpenThread, and IEEE 802.15.4 proprietary protocols.

Read more...
Quectel partners with GEODNET
Quectel Wireless Solutions Telecoms, Datacoms, Wireless, IoT
Quectel Wireless Solutions has partnered with GEODNET to deliver Quectel’s Real-Time Kinematic (RTK) correction services, enabling high-precision positioning for IoT applications.

Read more...
Bringing Bluetooth Channel Sounding to automotive and beyond with KW47
Altron Arrow Telecoms, Datacoms, Wireless, IoT
NXP’s new Channel Sounding-certified KW47 and MCX W72 wireless MCUs are set to help automakers with distance measurement, bringing an additional ranging solution for car access and autonomous systems, and will be utilised across a broader spectrum of applications.

Read more...
Dual-band GNSS antenna
RF Design Telecoms, Datacoms, Wireless, IoT
The Taoglas Accura GVLB258.A, is a passive, dual-band GNSS L1/L5, high-performance antenna for high precision GNSS accuracy and fast positioning.

Read more...
What is Wi-Fi HaLow and why choose it for IoT?
iCorp Technologies Editor's Choice Telecoms, Datacoms, Wireless, IoT
Wi-Fi HaLow introduces a low power connectivity option that, in contrast to other Wi-Fi options, offers greater range of approximately 1 km, which opens up a raft of IoT use cases.

Read more...
Wi-Fi 6 and Bluetooth LE coprocessor module
Altron Arrow Telecoms, Datacoms, Wireless, IoT
The ST67W611M1 from STMicroelectronics boasts an all-in-one design which, together with its capabilities, contribute to making it an attractive choice for IoT edge devices requiring a single-chip solution.

Read more...
Futureproofing IoT connectivity
SIMcontrol Telecoms, Datacoms, Wireless, IoT
A managed private APN assigns every device to an isolated carrier slice, producing a single ingress to the enterprise network, with traffic bypassing shared internet paths and reducing exposure.

Read more...
Extra slim 2,4 GHz radio module
Telecoms, Datacoms, Wireless, IoT
The Thyone I radio module from Würth Elektronik now has a little sibling: Thyone-e, which takes up 30% less space and represents a cost-effective alternative for applications in which the long-range mode is not required.

Read more...









While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd | All Rights Reserved