TKIP 、 AES : 安全標準
WPA TKIP的缺陷
TKIP安全協議(通常稱為WPA)是有缺陷的。有關它的第一個漏洞
曝光於2008年11月。但是,這兩個漏洞都並非那麼嚴重。
"WPA2"-AES 比 "WPA"-TKIP 需要更大的功率。較舊的路由器可能沒有足夠的功率。
WPA和WPA2都有兩種版本
個人版 : 個人版只有一個密碼,個人版也稱為預共用密鑰或簡稱為PSK。
企業版;使用企業版的每一個無線網路用戶都有一個自己的密碼。
WPA 和 WPA2 的密碼最多可支援63個字元長。
所以更好的方式是,把密碼看成是“句子”,而不是“單詞”。
以上參考資料來源 :
总而言之AES提供了比 TKIP更加高级的加密技术, 现在无线路由器都提供了这2种算法,不过比较倾向于AES。TKIP安全性不如AES,而且在使用TKIP算法时路由器的吞吐量会下降3成至5成,大大地影响了路由器的性能。
WPA加密分為2種安全加密技術,其中AES比TKIP採用更高級的加密技術,而如果採用TKIP的話,網路的傳輸速度就會被限制在54 Mbps以下。
如果家裡是使用早期802.11g的無線路由器的話,這2種的加密技術可能感覺差異不多。但在本次測試中,可以發現採用AES技術速度達到101Mbps,比不加密低不到5Mbps。而TKIP則只有23.4Mbps,反而明顯掉了好多倍。因此在以「快速」為需求的網路環境中,請選擇AES,不要不小心選擇到TKIP技術。
至於在WPA2下,所採用的即為AES加密技術,測得的速度為102.5Mbps。
TKIP (Temporal Key Integrity Protocol )
On October 31, 2002, the Wi-Fi Alliance endorsed TKIP under the name Wi-Fi Protected Access (WPA).The IEEE endorsed the final version of TKIP, along with more robust solutions such as 802.1X and the AES based CCMP, when they published IEEE 802.11i-2004 on 23 July 2004.The Wi-Fi Alliance soon afterwards adopted the full specification under the marketing name WPA2.
is a specification for the encryption of electronic data. It has been adopted by the U.S. government and is now used worldwide. It supersedesDES. The algorithm described by AES is a symmetric-key algorithm, meaning the same key is used for both encrypting and decrypting the data.
WPA ( Wi-Fi Protected Access )
security protocols and security certification programs developed by the Wi-Fi Alliance to secure wireless computer networks. The Alliance defined these in response to serious weaknesses researchers had found in the previous system, WEP (Wired Equivalent Privacy).
WPA2 has replaced WPA. WPA2, which requires testing and certification by the Wi-Fi Alliance, implements the mandatory elements of IEEE 802.11i. In particular, it introduces CCMP, a new AES-based encryption mode with strong security.Certification began in September, 2004; from March 13, 2006, WPA2 certification is mandatory for all new devices to bear the Wi-Fi trademark.
Not only for security reasons but also for performance reasons. Whenever you enable security on a wireless network you take some kind of performance hit (security requires extra bandwidth and processing time). Interestingly enough, the hit for AES is much smaller than the drop for WEP or TKIP! More exact figures can be found on wireless router reviews on www.smallnetbuilder.com (Tom’s Hardware). In the end AES gives you more security and a faster network than TKIP.
http://askville.amazon.com/difference-AES-TKIP/AnswerViewer.do?requestId=7123665
所以,Just Share 目前 使用WPA 2 - AES 無線網路安全保護
Just Share
沒有留言:
張貼留言