WPA-PSK [TKIP] or WPA2-PSK [AES]?

[DasFox]

What gives better security and enycryption?

WPA-PSK [TKIP] or WPA2-PSK [AES]?

Also should 15 characters be long enough for firewall wireless security passphrase?

THANKS

P.S. I've personally always thought WPA2 is, just not sure about the TKIP or AES...

[AKAJohnDoe]

You can do AES or TKIP with WPA; however, I have always found TKIP to be usable by more devices and AES to be a bit more secure.

[DasFox]

Quote:

Originally Posted by AKAJohnDoe

You can do AES or TKIP with WPA; however, I have always found TKIP to be usable by more devices and AES to be a bit more secure.

My router only has it in these options and of course I wanted to use WPA2 for the most security...

[tipstir]

Quote:

Originally Posted by DasFox

What gives better security and enycryption?

WPA-PSK [TKIP] or WPA2-PSK [AES]?

Also should 15 characters be long enough for firewall wireless security passphrase?

THANKS

P.S. I've personally always thought WPA2 is, just not sure about the TKIP or AES...

Better to use WPA2/AES you can now use that on both G/N routers. On N it's suppose to be better. That's if you can get N to be stable. Passcode an be any length though. Just make sure you can remember it. Router can generate a code but it's better to do it manually.

[DasFox]

Quote:

Originally Posted by tipstir

Better to use WPA2/AES you can now use that on both G/N routers. On N it's suppose to be better. That's if you can get N to be stable. Passcode an be any length though. Just make sure you can remember it. Router can generate a code but it's better to do it manually.

Well this router just leaves the passphrase in readable text, I wish the router hid the text though...

[Bill_Bright]

We need to be careful with our terminology to avoid confusion. There is NO SUCH THING as wireless routers!!!!

A router is a simple network device used to connect two networks. A router has 1 input and 1 output. However, most home "routers" come bundled with a 4-port Ethernet "switch" in the same box. Two separate network devices using the same case and same power supply.

"Wireless router" is simply a convenient, but inaccurate "marketing term". The device is really a router, switch, and a "wireless access point" (WAP) in the same box. Three separate network devices using the same case and same power supply.

Routers do not support G or N or any wireless protocol. Routers do not support WPA, WEP or any other type wireless encryption protocols. Routers do not generate code. That is done in the WAP and the WAP connects to the router via an internal Ethernet connection. The WAP is not part of the router, but a discrete network device - even though most likely integrated into the same printed circuit board (PCB).

Rather than saying the router is using G or N, or WPA2, we really should be saying the wireless network is using G or N, or WPA2. We need to be aware that from a networking standpoint, routers themselves are not wireless - they do not support 802.11x protocols. Home and small office Cable/DSL routers are Ethernet, and support 802.3 only.

This is important because many folks use separate devices in their networks. They do not log into their router menus to change wireless settings, they log into the WAP.

[DasFox]

Quote:

Originally Posted by Bill_Bright

We need to be careful with our terminology to avoid confusion. There is NO SUCH THING as wireless routers!!!!

A router is a simple network device used to connect two networks. A router has 1 input and 1 output. However, most home "routers" come bundled with a 4-port Ethernet "switch" in the same box. Two separate network devices using the same case and same power supply.

"Wireless router" is simply a convenient, but inaccurate "marketing term". The device is really a router, switch, and a "wireless access point" (WAP) in the same box. Three separate network devices using the same case and same power supply.

Routers do not support G or N or any wireless protocol. Routers do not support WPA, WEP or any other type wireless encryption protocols. Routers do not generate code. That is done in the WAP and the WAP connects to the router via an internal Ethernet connection. The WAP is not part of the router, but a discrete network device - even though most likely integrated into the same printed circuit board (PCB).

Rather than saying the router is using G or N, or WPA2, we really should be saying the wireless network is using G or N, or WPA2. We need to be aware that from a networking standpoint, routers themselves are not wireless - they do not support 802.11x protocols. Home and small office Cable/DSL routers are Ethernet, and support 802.3 only.

This is important because many folks use separate devices in their networks. They do not log into their router menus to change wireless settings, they log into the WAP.

Hey I know all this already, plus you posted this on the forum already, LOL...

What are you on some WAP Mission?

Hey what do you want the industry to call them then? A Router/Switch/WAP?

I don't think anyone is trying to deceive anyone by calling it a wireless router, it's just a simple term to try an explain what it is.

Hey us Geeks know a router simply 'Routes'...

[Bill_Bright]

I don't think their is any deceit either - just want folks to understand they are different.

[DasFox]

Quote:

Originally Posted by Bill_Bright

I don't think their is any deceit either - just want folks to understand they are different.

Your avater makes me feel like, Duck Dogers is on the case! LOL...

[AKAJohnDoe]

In order, my choice would be WPA2 over WPA and AES over TKIP, but you'll have to take the least common denominator of your device pool.

[Brian K]

For WPA2, you want TKIP plus AES.

Quote:

They are different things, not replacements for each other. TKIP is Temporal Key Integrity Protocol. TKIP is a way of selecting, managing, and updating the keys that are used for encryption in a way that is not predictable by an attacker. This protects the key to your encryption.

AES is the Advanced Encryption Standard. AES is a method to encrypt data in a way that someone else who has the key can decrypt it, but it is difficult (preferably impossible) to decrypt without the key. I think a cipher is an appropriate term, but don't quote me on that. Other ciphers used for digital data are RSA and DSA. There is a lot of debate, but AES is considered to be one of the best encryption methods available today.

So the answer is that you want both.