To solve transfer security issues on wireless networks, the 802.11 standard includes a simple data encryption mechanism called WEP (Wired equivalent privacy).
WEP has many flaws, making it vulnerable. Nevertheless, it exists as a security solution in all WiFi devices, which explains why it is so commonly used by the general public, as well as by some businesses.
There are, however, alternatives to WEP, such as WPA or WPA2.
WEP is an 802.11 data frame encryption protocol that uses the symmetrical algorithm RC4 with 64-bit or 128-bit keys.
The concept of WEP involves setting a secret 40-bit or 128-bit key ahead of time. This secret key must be declared to each adapter on the wireless network, as well as to the access point for a network in infrastructure more. The key is used to create a pseudo-random number of the same length as the data frame.
Each data transmission is encrypted this way, by using the pseudo-random number as a "mask"; an "Exclusive OR" operation is used to combine the frame and the pseudo-random number into an enciphered datastream.
The session key shared by all stations is static, which means that to deploy a large number of WiFi stations, they must be configured using the same session key. Therefore, knowing the key is all that is needed to decrypt the signals.
Furthermore, 24 bits of the key are used only for initialisation, which means that only 40 bits of a 64-bit key, or 104 bits of a 128-bit key, are actually used for encryption.
For a 40-bit key, a brute force attack (which tries all possible keys) might not stop a hacker from quickly finding the session key. Also, a flaw detected by Fluhrer, Mantin and Shamir in the generation of the pseudo-random stream makes it possible for the session key to be discovered by storing and analysing 100 MB to 1 GB of traffic.
Therefore, WEP is insufficient for actually ensuring data privacy. Nevertheless, it is strongly recommended to use at least a 128-bit WEP key to ensure a minimum level of privacy. This can reduce the risk of intrusion by 90%.
In order to more effectively manage authentication, authorisation, and accounting (AAA for short), a RADIUS server (Remote Authentication Dial-In User Service) may be used. The RADIUS protocol (defined by RFCs 2865 and 2866) is a client/server system which lets user accounts and related access permissions be centrally managed.
For all communications which require a high level of security, it is better to use strong encryption of data by installing a virtual private network (VPN).
Last update on Thursday October 16, 2008 02:43:15 PM.
Hot wire psp How to change wep on wireless router How to connect a wireless windows xp service pack 3 to a wep protected connection How to connect desktop wirelessly to laptop How to remove intel proset wireless sony vaio Hp dv6000 wireless adapter not working Laptop wont connect to secure wireless router wep Linksys wireless router setup with charter Linksys wireless router wont see computer Linksys wireless router wont see computer or x box Logitech wireless mouse not clicking My computer would not connect to wireless Ps3 wireless wont connect Smc wireless router wep key lost Unable to connect to wireless network no security enabled Use laptop and get on internet via wireless modem but dont have password Wep how to reset wireless password on d-link router dl-624 What wireless card do i need for a inspiron 1525?