Wireless Network Security

  1. Authentication and Access Control Mechanisms
    1. Pre-Shared Key Authentication
      1. PSK Implementation
        1. Use Cases and Applications
          1. Deployment Scenarios
            1. Scalability Limitations
            2. Passphrase Security
              1. Strong Passphrase Policies
                1. Complexity Requirements
                  1. Length Recommendations
                    1. Character Set Usage
                    2. Passphrase Management
                      1. Rotation Policies
                        1. Distribution Methods
                          1. Storage Security
                        2. PSK Vulnerabilities
                          1. Dictionary Attack Susceptibility
                            1. Shared Secret Risks
                              1. Key Distribution Challenges
                            2. IEEE 802.1X Port-Based Access Control
                              1. 802.1X Framework Components
                                1. Supplicant Role and Functions
                                  1. Authenticator Role and Functions
                                    1. Authentication Server Role and Functions
                                    2. 802.1X Protocol Operation
                                      1. Authentication Process Flow
                                        1. EAP Over LAN
                                          1. RADIUS Communication
                                            1. Dynamic Key Distribution
                                            2. Supplicant Configuration
                                              1. Client Software Requirements
                                                1. Certificate Installation
                                                  1. Profile Configuration
                                                  2. Authenticator Configuration
                                                    1. Access Point 802.1X Settings
                                                      1. Port Control Settings
                                                        1. VLAN Assignment
                                                      2. Extensible Authentication Protocol
                                                        1. EAP Framework
                                                          1. EAP Message Types
                                                            1. EAP State Machine
                                                              1. EAP Method Negotiation
                                                              2. Certificate-Based EAP Methods
                                                                1. EAP-TLS Implementation
                                                                  1. Certificate Requirements
                                                                    1. Mutual Authentication
                                                                      1. Key Derivation
                                                                      2. EAP-TTLS Configuration
                                                                        1. Secure Tunnel Creation
                                                                          1. Inner Authentication Methods
                                                                            1. Certificate Validation
                                                                            2. PEAP Implementation
                                                                              1. Protected EAP Tunnel
                                                                                1. Inner Method Selection
                                                                                  1. Certificate Chain Validation
                                                                                2. Password-Based EAP Methods
                                                                                  1. EAP-FAST Configuration
                                                                                    1. PAC Provisioning
                                                                                      1. Tunnel Establishment
                                                                                        1. Inner Authentication
                                                                                        2. EAP-MSCHAPv2 Implementation
                                                                                          1. EAP-GTC Configuration
                                                                                          2. EAP Method Selection Criteria
                                                                                            1. Security Requirements
                                                                                              1. Infrastructure Capabilities
                                                                                                1. Client Support
                                                                                                  1. Performance Considerations
                                                                                                2. RADIUS Server Implementation
                                                                                                  1. RADIUS Server Architecture
                                                                                                    1. Authentication Services
                                                                                                      1. Authorization Services
                                                                                                        1. Accounting Services
                                                                                                        2. User and Device Management
                                                                                                          1. User Database Configuration
                                                                                                            1. Machine Authentication
                                                                                                              1. Group Policy Assignment
                                                                                                              2. Certificate Management
                                                                                                                1. Certificate Authority Integration
                                                                                                                  1. Certificate Lifecycle Management
                                                                                                                    1. Revocation Checking
                                                                                                                    2. Policy Configuration
                                                                                                                      1. Access Policies
                                                                                                                        1. VLAN Assignment Policies
                                                                                                                          1. Bandwidth Policies
                                                                                                                          2. Logging and Monitoring
                                                                                                                            1. Authentication Logs
                                                                                                                              1. Accounting Records
                                                                                                                                1. Audit Trail Management
                                                                                                                              2. Alternative Authentication Methods
                                                                                                                                1. Captive Portal Implementation
                                                                                                                                  1. Web-Based Authentication
                                                                                                                                    1. Guest Access Management
                                                                                                                                      1. Terms of Service Acceptance
                                                                                                                                      2. Captive Portal Security
                                                                                                                                        1. HTTPS Implementation
                                                                                                                                          1. Session Management
                                                                                                                                            1. Bypass Prevention
                                                                                                                                            2. MAC Address Filtering
                                                                                                                                              1. Implementation Methods
                                                                                                                                                1. Management Challenges
                                                                                                                                                  1. Security Limitations
                                                                                                                                                    1. Bypass Techniques
                                                                                                                                                    2. Certificate-Based Authentication
                                                                                                                                                      1. Client Certificate Deployment
                                                                                                                                                        1. Certificate Validation
                                                                                                                                                          1. Revocation Management

                                                                                                                                                      Previous

                                                                                                                                                      4. Secure Wireless Network Design and Configuration

                                                                                                                                                      Go to top

                                                                                                                                                      Next

                                                                                                                                                      6. Advanced Wireless Security Technologies