Cisco Cisco Aironet 350 Mini-PCI Wireless LAN Client Adapter Designanleitung
C H A P T E R
4-1
Enterprise Mobility 4.1 Design Guide
OL-14435-01
4
Cisco Unified Wireless Network
Architecture—Base Security Features
Architecture—Base Security Features
The Cisco Unified Wireless Network solution builds upon the base security features of 802.11 by
augmenting RF, 802.11, and network-based security features where necessary to improve overall
security. Although the 802.11 standards address the security of the wireless medium, the Cisco Unified
Wireless Network solution addresses end-to-end security of the entire system by using architecture and
product security features to protect WLAN endpoints, the WLAN infrastructure, client communication,
and the supporting wired network.
augmenting RF, 802.11, and network-based security features where necessary to improve overall
security. Although the 802.11 standards address the security of the wireless medium, the Cisco Unified
Wireless Network solution addresses end-to-end security of the entire system by using architecture and
product security features to protect WLAN endpoints, the WLAN infrastructure, client communication,
and the supporting wired network.
Base 802.11 Security Features
This section focuses on the enterprise security features that are currently available for 802.11 wireless
networks.
networks.
Although there were initially security flaws native to the 802.11 protocol, the introduction of 802.11i
has addressed all the known data privacy issues, which are to ensure that the requirements for
confidential communications are achieved through the use of strong authentication and encryption
methods.
has addressed all the known data privacy issues, which are to ensure that the requirements for
confidential communications are achieved through the use of strong authentication and encryption
methods.
Additional WLAN security issues are discussed later in this guide. Some of these issues are being
addressed by standards bodies, while others are being addressed in the Cisco Unified Wireless Network
Solution.
addressed by standards bodies, while others are being addressed in the Cisco Unified Wireless Network
Solution.
WLAN Security Implementation Criteria
For the WLAN network, security is based on both authentication and encryption. Common security
mechanisms for WLAN networks are as follows:
mechanisms for WLAN networks are as follows:
•
Open Authentication, no encryption
•
Wired Equivalent Privacy (WEP)
•
Cisco WEP Extensions (Cisco Key Integrity Protocol +Cisco Message Integrity Check)
•
Wi-Fi Protected Access (WPA)
•
Wi-Fi Protected Access 2 (WPA 2)