The WPS standard defines three basic scenarios that involve components listed above:ĪP with integrated registrar capabilities configures an enrollee station ( STA) In this case, the session will run on the wireless medium as a series of EAP request/response messages, ending with the AP disassociating from the STA and waiting for the STA to reconnect with its new configuration (handed to it by the AP just before). AP An access point functioning as a proxy between a registrar and an enrollee. Enrollee A client device seeking to join a wireless network.
Registrar A device with the authority to issue and revoke access to a network it may be integrated into a wireless access point (AP), or provided as a separate device. The WPS protocol defines three types of devices in a network: Some manufacturers, such as Netgear, use a different logo and/or name for Wi-Fi Protected Setup the Wi-Fi Alliance recommends the use of the Wi-Fi Protected Setup Identifier Mark on the hardware button for this function. Some wireless access points have a dual-function WPS button, and holding this button down for a shorter or longer time may have other functions, such as factory-reset or toggling WiFi. The USB method has been deprecated and is not part of the Alliance's certification testing. Only the first two modes are currently covered by the WPS certification. The last two modes are usually referred to as out-of-band methods as there is a transfer of information by a channel other than the Wi-Fi channel itself. Support of this mode is optional, but deprecated. USB method In which the user uses a USB flash drive to transfer data between the new client device and the network's access point. NFC Forum–compliant RFID tags can also be used. Near-field communication method In which the user has to bring the new client close to the access point to allow a near field communication between the devices. The Wi-Fi Direct specification supersedes this requirement by stating that all devices must support the push button method. Support of this mode is mandatory for access points and optional for connecting devices. On most devices, this discovery mode turns itself off as soon as a connection is established or after a delay (typically 2 minutes or less), whichever comes first, thereby minimizing its vulnerability. Push button method In which the user has to push a button, either an actual or virtual one, on both the access point and the new wireless client device. The Wi-Fi Direct specification supersedes this requirement by stating that all devices with a keypad or display must support the PIN method. This method is the mandatory baseline mode and everything must support it. Alternately, a PIN provided by the access point may be entered into the new device. This PIN must then be entered at the "representant" of the network, usually the network's access point. PIN method In which a PIN has to be read from either a sticker or display on the new wireless device. The standard emphasizes usability and security, and allows four modes in a home network for adding a new device to the network: Users have been urged to turn off the WPS PIN feature, although this may not be possible on some router models. The flaw allows a remote attacker to recover the WPS PIN in a few hours with a brute-force attack and, with the WPS PIN, the network's WPA/WPA2 pre-shared key (PSK). Ī major security flaw was revealed in December 2011 that affects wireless routers with the WPS PIN feature, which most recent models have enabled by default.
This can be changed by pressing the WPS button on the home router. The owner can also allow people to use Wi-Fi. Wi-Fi Protected Setup allows the owner of Wi-Fi privileges to block other users from using their household Wi-Fi.
Wi-Fi Protected Setup ( WPS originally, Wi-Fi Simple Config) is a network security standard to create a secure wireless home network.Ĭreated by Cisco and introduced in 2006, the point of the protocol is to allow home users who know little of wireless security and may be intimidated by the available security options to set up Wi-Fi Protected Access, as well as making it easy to add new devices to an existing network without entering long passphrases. The WPS push button (center, blue) on a wireless router showing the symbol defined by the Wi-Fi Alliance for this function.
0 kommentar(er)
