Buffalo 09101896-0 User Manual

WPA Personal 

WPA encryption with a passphrase (text 
password) 

WPA Enterprise (AP 
only) 

WPA encryption with Radius Client 
authentication according to 802.1x 

WPA2 Personal 

WPA2 encryption with a passphrase (text 
password) 

WPA2 Enterprise (AP 
only) 

WPA2 encryption with Radius Client 
authentication according to 802.1x 

WPA2 Personal Mixed 

WPA & WPA2 encryption in WPA/WPA2 mixed mode 
with a passphrase (text password) 

WPA2 Enterprise Mixed 
(AP only) 

WPA & WPA2 encryption in WPA/WPA2 mixed with 
Radius Client authentication according to 
802.1x 

RADIUS  

WEP 

WEP 64 Bit / 128 Bit encryption (insecure; 
not recommended!) 

802.1x (Client only) 

Client side mode to connect to AP’s working 
with WPA Enterprise Modes via RADIUS 
authentication  

 
When using WEP encryption (not recommended), the user can choose 
between 64 bit and 128 bit keys. Keys can be entered as passphrases 
that are used to generate the Hex keys. Theoretically 128 bit keys 
offer a higher level of security but because of design flaws, that’s 
not the case in actual use. 
  

Key length 

Description 

64 Bit (10 
Hexadecimal 
characters) 

Standard 

128 Bit (26 
Hexadecimal 
characters) 

 

 
With WPA or WPA2 encryption, there are several encryption algorithms 
to choose from. AES is more secure but TKIP is more widely supported. 
There is also a TKIP + AES setting, but that does not offer more 
security than TKIP. 
 

Algorithm 

Description 

TKIP 

TKIP encryption, supported by most clients 
devices 

AES 

AES encryption offers a better level of 
security but might not be supported by a 
number of client devices and requires less 
CPU processing power. 

TKIP + AES 

Mixed mode – offers best compatibility but 
doesn’t work in all environments 

 
If RADIUS security is used, the MAC address format has to be set 
accordingly. 

 

- 10 -