AP-5131 Access Point Product Reference Guide
6-22
Default (hexadecimal) 256-bit keys for WPA/TKIP include:
1011121314151617
18191A1B1C1D1E1F
2021222324252627
28292A2B2C2D2E2F
7. Click the Apply button to save any changes made within the WPA/TKIP Settings field of the
New Security Policy screen.
8. Click the Cancel button to undo any changes made within the WPA/TKIP Settings field and
return to the WLAN screen. This reverts all settings to the last saved configuration.
6.9 Configuring WPA2-CCMP (802.11i)
WPA2 is a newer 802.11i standard that provides even stronger wireless security than Wi-Fi Protected
Access (WPA) and WEP. CCMP is the security standard used by the Advanced Encryption Standard
(AES). AES serves the same function TKIP does for WPA-TKIP. CCMP computes a Message Integrity
Check (MIC) using the proven Cipher Block Chaining (CBC) technique. Changing just one bit in a
message produces a totally different result.
WPA2/CCMP is based on the concept of a Robust Security Network (RSN), which defines a hierarchy
of keys with a limited lifetime (similar to TKIP). Like TKIP, the keys the administrator provides are used
to derive other keys. Messages are encrypted using a 128-bit secret key and a 128-bit block of data.
The end result is an encryption scheme as secure as any the AP-5131 provides.
To configure WPA2-CCMP on the AP-5131:
1. Select Network Configuration -> Wireless -> Security from the AP-5131 menu tree.
ASCII Passphrase To use an ASCII passphrase (and not a hexadecimal value), select
the checkbox and enter an alphanumeric string of 8 to 63
characters. The alphanumeric string allows character spaces. The
AP-5131 converts the string to a numeric value. This passphrase
saves the administrator from entering the 256-bit key each time
keys are generated.
256-bit Key To use a hexadecimal value (and not an ASCII passphrase), select
the checkbox and enter 16 hexadecimal characters into each of the
four fields displayed.