Boing Boing: Wireless security to get new "standard"

Thursday, October 31, 2002

Wireless security to get new "standard"

The WiFi Alliance -- the certification body that blesses 802.11 devices -- has announced a plan to replace the broken and crumbling WEP (Wired Equivalent Privacy) "security" system with something called "Wi-Fi Protected Access" (WPA). The press-release links to a couple of feel-good PDFs about WPA. It seems like there's some behind-the-scenes politicking going on at the standards body (WPA isn't a standard yet, but WiFi Alliance will roll out a version that's "forward compatible" with a "proposed standard"). Anyone know where the security wonks are duking it over over whether or not WPA works?

In enterprise mode, a network server and sophisticated authentication mechanisms are utilized and automatically distribute special encryption keys, called master keys.
In a home environment, where there are no network servers, Wi-Fi Protected Access runs in a special mode, which allows the use of manually entered keys or passwords instead. This mode, also called Pre-Shared Key (PSK), is designed to be easy to set up for the home user. All the home user needs to do is enter a password (also called a master key) into their access point or home wireless gateway and each PC that is on the Wi-Fi wireless network. After entering the password, Wi-Fi Protected Access automatically takes over. First, it keeps out eavesdroppers and other unauthorized users by requiring all devices to have the matching password. Second, the password kicks off the encryption process, which in Wi-Fi Protected Access is called Temporal Key Integrity Protocol (TKIP).

Link Discuss

posted by Cory Doctorow at 07:55:13 AM permalink | Other blogs' comments

suggest a link \| defeat censorware \| rss \| archives \| t-shirts \| digital emporium \| podcast feed \| mark \| cory \| david \| xeni \| john
Support Bloggers' Rights! HOWTO: Get a link posted to Boing Boing Boing Boing Mobile powered by Winksite Fark rules! This work is licensed under a Creative Commons License permitting non-commercial sharing with attribution. Boing Boing is a trademark of Happy Mutants LLC in the United States [and other countries]. Stats (About our stats) defeat censorware Policies Our first five years' worth of posts in one file	Thursday, October 31, 2002 Wireless security to get new "standard" The WiFi Alliance -- the certification body that blesses 802.11 devices -- has announced a plan to replace the broken and crumbling WEP (Wired Equivalent Privacy) "security" system with something called "Wi-Fi Protected Access" (WPA). The press-release links to a couple of feel-good PDFs about WPA. It seems like there's some behind-the-scenes politicking going on at the standards body (WPA isn't a standard yet, but WiFi Alliance will roll out a version that's "forward compatible" with a "proposed standard"). Anyone know where the security wonks are duking it over over whether or not WPA works? In enterprise mode, a network server and sophisticated authentication mechanisms are utilized and automatically distribute special encryption keys, called master keys. In a home environment, where there are no network servers, Wi-Fi Protected Access runs in a special mode, which allows the use of manually entered keys or passwords instead. This mode, also called Pre-Shared Key (PSK), is designed to be easy to set up for the home user. All the home user needs to do is enter a password (also called a master key) into their access point or home wireless gateway and each PC that is on the Wi-Fi wireless network. After entering the password, Wi-Fi Protected Access automatically takes over. First, it keeps out eavesdroppers and other unauthorized users by requiring all devices to have the matching password. Second, the password kicks off the encryption process, which in Wi-Fi Protected Access is called Temporal Key Integrity Protocol (TKIP). Link Discuss posted by Cory Doctorow at 07:55:13 AM permalink \| Other blogs' comments Email this entry to: Your email address: Message (optional):	Boing Boing Sponsored by: Your Text Ad Here Get BB by email: