Cisco, Microsoft team on wireless security

Cisco will implement the draft security standard, called 802.1x, on its Cisco Aironet 350 series of 802.11b-compliant WLAN (wireless local area networking) products, the company said in a statement Monday. Microsoft, Cisco, and a group of other companies have teamed up on what Cisco is calling the first enterprise authentication and security architecture based on the draft 802.1x and EAP (Extensible Authentication Protocol) standard, published by the Institute of Electrical and Electronics Engineers (IEEE).

The new standard is meant to address security holes raised by the popular 802.11b, or Wi-Fi, wireless network standard. Researchers at the University of California, Berkeley, recently identified weaknesses that could potentially make Wi-Fi networks vulnerable to hackers. In the research paper released in February, university researchers concluded that the protocol used to access corporate networks has "major security flaws" and is vulnerable to hackers using easily to obtain equipment. The protocol is referred to as the Wired Equivalent Privacy (WEP) protocol and is used in the IEEE 802.11 international standard for wireless LAN (local area network) communications.

The protocol is vulnerable to attacks that decrypt traffic, according to the members of the Internet Security Applications, Authentication and Cryptography (ISAAC) group in the university's Computer Science Division. Researchers were able to intercept and modify transmissions and access restricted networks. The ISAAC research can be viewed at http://www.isaac.cs.berkeley.edu/.

According to a Cisco white paper, the company said it was aware of the security flaws in the WEP protocol before the company developed its Aironet architecture. Cisco, in its white paper, agreed with Berkeley researchers who cite inherent weaknesses in WEP and that the weaknesses exist regardless of the length of the encryption key used.

In general, the extent of the vulnerability depends on whether static or dynamic WEP is used, according to Cisco. The Cisco Aironet wireless security adds to 802.11b WEP by creating a per-user, per-session, dynamic WEP key tied to the network logon, Cisco said. This addresses the limitations of static WEP keys while providing a deployment that is easy to use for administrators, Cisco said.

For more specifics on the security augmentations made by Cisco, go to http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/1281_pp.htm/.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.
Show Comments

Brand Post

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Jack Jeffries

MSI GS75

As the Maserati or BMW of laptops, it would fit perfectly in the hands of a professional needing firepower under the hood, sophistication and class on the surface, and gaming prowess (sports mode if you will) in between.

Taylor Carr

MSI PS63

The MSI PS63 is an amazing laptop and I would definitely consider buying one in the future.

Christopher Low

Brother RJ-4230B

This small mobile printer is exactly what I need for invoicing and other jobs such as sending fellow tradesman details or step-by-step instructions that I can easily print off from my phone or the Web.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?