Enabling Additional Wep Security Features; Enabling Message Integrity Check (Mic) - Cisco AIR-LAP1252AG-A-K9 - Aironet 1252AG - Wireless Access Point Software Configuration Manual
Software configuration guide
Hide thumbs
Also See for AIR-LAP1252AG-A-K9 - Aironet 1252AG - Wireless Access Point:
- Datasheet (14 pages)
Table of Contents
Enabling Additional WEP Security Features
Note
Enabling Additional WEP Security Features
Enabling Message Integrity Check (MIC)
Note
Cisco Aironet 1200 Series Access Point Software Configuration Guide
4-14
Table 4-2
SNMP Variable Settings and Corresponding WEP Levels
SNMP Variable
dot11ExcludeUnencrypted.2
awcDot11AllowEncrypted.2
Access points do not use the SNMP variable dot11PrivacyInvoked, so it is always
set to disabled.
You can enable three advanced security features to protect against sophisticated
attacks on your wireless network's WEP keys. This section describes how to set
up and enable these features:
Enabling Message Integrity Check (MIC)
•
Enabling Temporal Key Integrity Protocol (TKIP)
•
Enabling Broadcast WEP Key Rotation
•
MIC prevents attacks on encrypted packets called bit-flip attacks. During a bit-flip
attack, an intruder intercepts an encrypted message, alters it slightly, and
retransmits it, and the receiver accepts the retransmitted message as legitimate.
The MIC, implemented on both the access point and all associated client devices,
adds a few bytes to each packet to make the packets tamper-proof.
You must set up and enable WEP with full encryption before MIC takes effect.
Chapter 4
WEP Full
WEP Off
true
false
true
false
Security Setup
WEP Optional
false
true
OL-2159-03
Hide quick links:
Table of Contents
