Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
•	Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
•	Microsoft details 'Windows on ARM' program
•	March debut of 'iPad 3' a sure bet, says analyst
•
•	FBI unbolts Steve Jobs 1991 investigation file
•	Cisco boosted profit, sales in Q2 while cutting costs
•	Macs take on the enterprise
•	Four crazy tech ideas from Google's Solve for X project
•	Obama 2012 campaign playlist revealed courtesy of Spotify
•	Oracle buying Taleo for US$1.9 billion in direct hit at SAP
•	Amazon attacks Apple: You get 3 Kindle products for price of iPad 2
•	Pre-rendered pages highlight latest Google Chrome release
•	Microsoft exec: Lync-Skype integration a 'compelling opportunity'
•	The future of hypervisors
•	More breaking news

/

IEEE is working on new standard

By Steve Janss
Network World, 12/17/01

The second solution is an updated 802.11b standard that provides the authentication and encryption services required for secure wireless networking. The scope of IEEE's 802.11b Task Group I is "to enhance the 802.11 Medium Access Control to enhance security and authentication mechanisms." One solution is referred to as "generic composition," and combines proven methods for encryption, such as Counter - Advanced Encryption Standard (AES) with proven methods for authentication, such as Cipher Block Chaining. By "authentication" it refers to what Phillip Rogaway of University of California,Davis, calls a "message integrity code" or a "message authentication code." This refers to the process of authenticating each message, not just the user.

One of the most promising things to come out of IEEE's July meeting in Portland, Ore., was its consideration of Rogaway's OCB (Offset Codebook), which uses a 128-bit AES block cipher with 128-bit keys to provide for message authentication as well as encryption with a processing overhead close to that of encryption alone. At press time, OCB-AES128 was the only mechanism being considered by IEEE in its latest revision of the 802.11b standard, although industry leaders are exploring other "generic composition" alternatives. While the patented OCB requires a minimal usage fee, OCB is about twice as fast as the alternatives. OCB's edge in speed is impressive, but it matters less with more powerful hardware that's able to keep up with the competition's requirements.

Back to the main review

RELATED LINKS

Janss is the president of Jansys Information Systems, a consulting firm specializing in IS technologies for small businesses. He can be reached at bizcom@jansys.com.

Wireless LAN security
The IEEE 802.11b Task Group I is working on a new standard that provides authentication and encryption for secure wireless networking. In the meantime, proprietary products that plug the holes in 802.11b security may be your best bet.

How we did it
Our testing methods ecplained.

WEP's fatal flaw exposed
Wired Equivalent Privacy vulnerabilities came to light more than a year ago in October 2000.

A closer look at LEAP
How Lightweight Extensible Authentication Protocol works.

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.