Quote:
|
Originally Posted by AxelF
I think in WPA the encryption done by WEP is replaced with TKIP which is an enhanced version of WEP with a per-packet key mixing function. Though in some texts it says that TKIP wraps WEP, so...
But my point was actually that if just one of your access points is running on WEP then you are not really WPA protected. Even if the others run WPA.
|
TKIP is an additional protocol that runs
ON TOP of WEP. WEP is still used as the underlying encryption. What happens is that you no longer use single static WEP keys, but TKIP leveragels 802.1X to generate "dynamic" WEP keys (500 trillion possibilities).
TKIP, or Temporal Key Integrity Protocol, is
not really a standalone encryption protocol. All it does is rehash the frame on a per-packet basis, thereby avoiding the flaw in WEP whereby predictable weak IV (Initialization Vectors) are used after a certain length of time.
Basically, in general terms, TKIP "scrambles" WEP packets a bit more than they would normally be.
However, I guess we're kinda splitting hairs here.
Mr Mephisto