Planning Your Wireless Network
Security Threats Facing Wireless Networks
Cisco PVC2300 and WVC2300 Internet Video Cameras with Audio Administration Guide
8
2
WEP Encryption. Wired Equivalent Privacy (WEP) is often looked upon as a cure-all
for wireless security concerns. This is overstating WEP’s ability. Again, this can
only provide enough security to make a hacker’s job more difficult. There are
several ways that WEP can be maximized:
•
Use the highest level of encryption possible
•
Use “Shared Key” authentication
•
Change your WEP key regularly
WPA/WPA2 Personal. WPA stands for Wi-Fi Protected Access, which is a security
standard stronger than WEP encryption. A network encrypted with WPA/WPA2 is
more secure than a network encrypted with WEP, because WPA/WPA2 uses
dynamic key encryption. To protect the information as it passes over the airwaves,
you should enable the highest level.
WPA/WPA Enterprise. Enterprise refers to using RADIUS server for authentication,
while RADIUS stands for Remote Authentication Dial-In User Service. This type of
authentication requires some advanced expertise because it involves setting up a
RADIUS server for authentication and, in some cases, creation of certificates for
both the RADIUS server and the camera.
If you are using WPA/WPA2 Enterprise security, you will need to upload security
certificates to the camera. Certificates must be in the following format:
•
Root certificate: DER encoded binary x.509 (CER/PEM)
•
User certificate: Personal Information Exchange (PKCS#12(.PFX))
Implementing encryption may have a negative impact on your network’s
performance, but if you are transmitting sensitive data over your network,
encryption should be used.
These security recommendations should help keep your mind at ease while you
are enjoying the most flexible and convenient technology Cisco has to offer.
!
CAUTION
Always remember that each device in your wireless network MUST use the same
encryption method and encryption key or your wireless network will not function
properly.
