802.11i
802.1x for authentication (entailing the use of EAP and an authentication server), RSN for keeping track of associations and AES-based CCMP to provide confidentiality, integrity and origin authentication. Another important element of the authentication process is the four-way handshake. Once the authentication handshake takes place, a 4-way handshake is performed with the actual keys used for encryption. For protecting broadcast and multicast packets group key handshake takes place. In this whole process the Master Key (MK) is available with Supplicant and Authenticator server and is never sent on the medium.
802.11k
802.11k is intended to improve the way traffic is distributed within a network. In a wireless LAN, each device normally connects to the access point (AP) that provides the strongest signal. Depending on the number and geographic locations of the subscribers, this arrangement can sometimes lead to excessive demand on one AP and underutilization of others, resulting in degradation of overall network performance. In a network conforming to 802.11k, if the AP having the strongest signal is loaded to its full capacity, a wireless device is connected to one of the underutilized APs. Even though the signal may be weaker, the overall throughput is greater because more efficient use is made of the network resources.
802.11r
The technology is designed to keep a secure Wi-Fi connection active by anticipating the needed security settings at the next access point. The format can determine the security settings and quality of service info for the next access point before actually hopping to the next point and thus reduces the delay in switching networks to where time-sensitive apps will remain active.
The standard would allow seamless connections across many private networks but is said to be particularly useful for VoIP, which can often drop calls altogether when moving between access points. Updating to 802.11r may also be important for offices, which often need secure Wi-Fi but often have more than one access point to provide coverage over a large area.
802.11w
It is the standard to increase the security of its management frames. Wireless LANs send system management information in unprotected frames, which makes them vulnerable. This standard will protect against network disruption caused by malicious systems that forge disassociation requests that appear to be sent by valid equipment.
No comments:
Post a Comment