Wi-Fi Alliance Boosts WPA2, to Release WPA3

Wednesday, January 10, 2018 @ 12:01 PM gHale

The Wi-Fi Alliance released enhancements for WPA2 and the imminent introduction of WPA3.

The 13-year-old WPA2 (Wi-Fi Protected Access II) is a security protocol widely used for securing wireless computer networks.

ICS Alert: USB Malware Attack
Safety System, DCS Attacked
Advancing to IIoT Means Back to Security Basics
Cyber Adds to Downtime Costs: ARC-SANS

WPA2 does have security weaknesses, which ended up going public in October by Mathy Vanhoef, a postdoc at Belgian University of Leuven.

“WPA2 provides reliable security used in billions of Wi-Fi devices every day, and will continue to be deployed in Wi-Fi CERTIFIED devices for the foreseeable future,” the organization said in a post.

“Wi-Fi Alliance will continue enhancing WPA2 to ensure it delivers strong security protections to Wi-Fi users as the security landscape evolves. Advanced Wi-Fi applications will rely on WPA2 with Protected Management Frames, broadly adopted in the current generation of Wi-Fi CERTIFIED devices, to maintain the resiliency of mission-critical networks. New testing enhancements will also reduce the potential for vulnerabilities due to network misconfiguration, and further safeguard managed networks with centralized authentication services.”

“Four new capabilities for personal and enterprise Wi-Fi networks will emerge in 2018 as part of Wi-Fi CERTIFIED WPA3,” the alliance said in the post.

Two of the features will deliver protections even when users choose passwords that fall short of typical complexity recommendations, and will simplify the process of configuring security for devices that have limited or no display interface, the alliance said.

Another feature will strengthen user privacy in open networks through individualized data encryption.

In addition, a 192-bit security suite, aligned with the Commercial National Security Algorithm (CNSA) Suite from the Committee on National Security Systems, will further protect Wi-Fi networks with higher security requirements such as government, defense, and industrial.”

Leave a Reply

You must be logged in to post a comment.