Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Encryption Methods
Aruba APs support SSIDs Service Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. with the following types of encryption:
WPA Wi-Fi Protected Access. WPA is an interoperable wireless security specification subset of the IEEE 802.11 standard. This standard provides authentication capabilities and uses TKIP for data encryption. for enterprise or the personal network users. WPA supports TKIP Temporal Key Integrity Protocol. A part of the WPA encryption standard for wireless networks. TKIP is the next-generation Wired Equivalent Privacy (WEP) that provides per-packet key mixing to address the flaws encountered in the WEP standard. (Temporal Key Integrity Protocol), which supports a unique encryption key for each wireless frame to provide a secure connection.
—WLAN SSIDs support security profiles withWPA2 Wi-Fi Protected Access 2. WPA2 is a certification program maintained by IEEE that oversees standards for security over wireless networks. WPA2 supports IEEE 802.1X/EAP authentication or PSK technology, but includes advanced encryption mechanism using CCMP that is referred to as AES.-Enterprise encryption uses authentication standards such as 802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. along with other WPA2 features such as AES Advanced Encryption Standard. AES is an encryption standard used for encrypting and protecting electronic data. The AES encrypts and decrypts data in blocks of 128 bits (16 bytes), and can use keys of 128 bits, 192 bits, and 256 bits.. WPA2-Enterprise encryption provides a secure wireless network for enterprise use. For personal wireless network, the WPA-Personal encryption type can be used along with a pre-shared key.
—TheWi-Fi Wi-Fi is a technology that allows electronic devices to connect to a WLAN network, mainly using the 2.4 GHz and 5 GHz radio bands. Wi-Fi can apply to products that use any 802.11 standard. hotspot Hotspot refers to a WLAN node that provides Internet connection and virtual private network (VPN) access from a given location. A business traveler, for example, with a laptop equipped for Wi-Fi can look up a local hotspot, contact it, and get connected through its network to reach the Internet.. WPA3-Enterprise encryption can be used to provide secure wireless network for enterprise, whereas the WPA-Personal encryption with a pre-shared key can be configured for a personal network.
—The WPA3 encryption provides robust protection with unique encryption per user session and thus allows the SSID administrators to provide a highly secured connection even on a publicWEP Wired Equivalent Privacy. WEP is a security protocol that is specified in 802.11b and is designed to provide a WLAN with a level of security and privacy comparable to what is usually expected of a wired LAN. encryption method combines of 802.1X authentication standard and the Extensible Authentication Protocol (EAP Extensible Authentication Protocol. An authentication protocol for wireless networks that extends the methods used by the PPP, a protocol often used when connecting a computer to the Internet. EAP can support multiple authentication mechanisms, such as token cards, smart cards, certificates, one-time passwords, and public key encryption authentication. ). With Dynamic WEP security, WEP keys are changed dynamically.
—DynamicMPSK Multi Pre-Shared Key. The Cloud Authentication and Policy server enables MPSK in a WLAN network in Aruba Central, to provide seamless wireless network connection to the end-users and client devices.) supports multiple PSKs simultaneously on a single SSID. MPSK-AES is supported only when Aruba ClearPass Policy Manager ClearPass Policy Manager is a baseline platform for policy management, AAA, profiling, network access control, and reporting. With ClearPass Policy Manager, the network administrators can configure and manage secure network access that accommodates requirements across multiple locations and multivendor networks, regardless of device ownership and connection method. is configured as an authentication server on the WLAN Wireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. SSID.
—Multi-Pre-Shared Key (ClearPass Policy Manager.
—MPSK Local supports 24 pre-shared keys per SSID without an external policy engine like