Connectivity and Data Protection
Summary
In an 802.11 network, authentication proceeds association. With more
sophisticated security mechanisms in place, such as 802.1X/EAP, there
may be a succession of authentication and association steps. The client
may be required to Open System authenticate and associate before
starting the process of 802.1X/EAP authentication. WEP is no longer
deemed acceptable security for a corporate WLAN. Stronger layer 2
security such as WPA and WPA2/802.11i are now available.
Wireless networks’ main attraction is the ability to roam freely. If
roaming does not happen seamlessly, then most of the value of wireless
is lost. An analyst should understand, in depth, the details of the
roaming process including reassociation, security, and the amount of
time expected between leaving one AP and connecting with another.
