beautypg.com

Wpa2-ccmp – Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 418

background image

408

Brocade Mobility Access Point System Reference Guide

53-1003100-01

6

9. Select OK when completed to update the WLAN’s WPA/WPA2-TKIP encryption configuration.

Select Reset to revert the screen back to its last saved configuration.

NOTE

WPA-TKIP is not supported on radios configured to exclusively use 802.11n.

WPA-TKIP Deployment Considerations

Before defining a WPA-TKIP supported configuration on a WLAN, refer to the following deployment
guidelines to ensure the configuration is optimally effective:

Though TKIP offers better security than WEP, it can be vulnerable to certain attacks.

When both TKIP and CCMP are enabled, a mix of clients are allowed to associate with the
WLAN. Some use TKIP, others use CCMP. Since broadcast traffic needs to be understood by all
clients, the broadcast encryption type in this scenario is TKIP.

WPA2-CCMP

Configuring WLAN Security

WPA2 is a newer 802.11i standard that provides even stronger wireless security than Wi-Fi
Protected Access (WPA) and WEP. CCMP is the security standard used by the Advanced Encryption
Standard (AES). AES serves the same function TKIP does for WPA-TKIP. CCMP computes a Message
Integrity Check (MIC) using the proven Cipher Block Chaining (CBC) technique. Changing just one
bit in a message produces a totally different result.

WPA2/CCMP is based on the concept of a Robust Security Network (RSN), which defines a
hierarchy of keys with a limited lifetime (similar to TKIP). Like TKIP, the provided keys are used to
derive other keys. Messages are encrypted using a 128-bit secret key and a 128-bit block of data.
The end result is an encryption scheme as secure as any for associated clients.

To configure WPA2-CCMP encryption on a WLAN:

1. Select the Configuration tab from the Web UI.

2. Select Wireless.

3. Select Wireless LANs to display a high level display of existing WLANs.

4. Select the Add button to create an additional WLAN, or select an existing WLAN and Edit to

modify the properties of an existing WLAN.

5. Select Security.

6. Select the WPA2-CCMP radio button from within the select Select Encryption field.

The screen populates with the parameters required to define a WPA2-CCMP configuration for the
WLAN.

See also other documents in the category Brocade Computer Accessories: