NETGEAR WG302 - 802.11g ProSafe Wireless Access... User manual
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 1
July 2005 v3.0
Glossary
Use the list below to find definitions for technical terms used in this manual.
802.11 Standard
802.11, or IEEE 802.11, is a type of radio technology used for wireless local area networks (WLANs). It is a
standard that has been developed by the IEEE (Institute of Electrical and Electronic Engineers),
http://standards.ieee.org. The IEEE is an international organization that develops standards for hundreds of
electronic and electrical technologies. The organization uses a series of numbers, like the Dewey Decimal
system in libraries, to differentiate between the various technology families.
The 802 subgroup (of the IEEE) develops standards for local and wide area networks with the 802.11 section
reviewing and creating standards for wireless local area networks.
Wi-Fi , 802.11, is composed of several standards operating in different radio frequencies: 802.11b is a
standard for wireless LANs operating in the 2.4 GHz spectrum with a bandwidth of 11 Mbps; 802.11a is a
different standard for wireless LANs, and pertains to systems operating in the 5 GHz frequency range with a
bandwidth of 54 Mbps. Another standard, 802.11g, is for WLANS operating in the 2.4 GHz frequency but
with a bandwidth of 54 Mbps.
802.11a Standard
An IEEE specification for wireless networking that operates in the 5 GHz frequency range (5.15 GHz to
5.85 GHz) with a maximum 54 Mbps data transfer rate. The 5 GHz frequency band is not as crowded as the
2.4 GHz frequency, because the 802.11a specification offers more radio channels than the 802.11b. These
additional channels can help avoid radio and microwave interference.
802.11b Standard
International standard for wireless networking that operates in the 2.4 GHz frequency range (2.4 GHz to
2.4835 GHz) and provides a throughput of up to 11 Mbps. This is a very commonly used frequency.
Microwave ovens, cordless phones, medical and scientific equipment, as well as Bluetooth devices, all work
within the 2.4 GHz frequency band.
802.11d Standard
802.11d is an IEEE standard supplementary to the Media Access Control (MAC) layer in 802.11 to promote
worldwide use of 802.11 WLANs. It will allow access points to communicate information on the
permissible radio channels with acceptable power levels for client devices. The devices will automatically
adjust based on geographic requirements.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
2Glossary
July 2005 v3.0
The purpose of 11d is to add features and restrictions to allow WLANs to operate within the rules of these
countries. Equipment manufacturers do not want to produce a wide variety of country-specific products and
users that travel do not want a bag full of country-specific WLAN PC cards. The outcome will be
country-specific firmware solutions.
802.11e Standard
802.11e is a proposed IEEE standard to define quality of service (QoS) mechanisms for wireless gear that
gives support to bandwidth-sensitive applications such as voice and video.
802.11g Standard
Similar to 802.11b, this physical layer standard provides a throughput of up to 54 Mbps. It also operates in
the 2.4 GHz frequency band but uses a different radio technology in order to boost overall bandwidth.
802.11i
This is the name of the IEEE Task Group dedicated to standardizing WLAN security. The 802.11i Security
has a frame work based on RSN (Robust Security Mechanism). RSN consists of two parts: 1) The Data
Privacy Mechanism and 2) Security Association Management.
The Data Privacy Mechanism supports two proposed schemes: TKIP and AES. TKIP (Temporal Key
Integrity) is a short-term solution that defines software patches to WEP to provide a minimally adequate
level of data privacy. AES or AES-OCB (Advanced Encryption Standard and Offset Codebook) is a robust
data privacy scheme and is a longer-term solution.
Security Association Management is addressed by a) RSN Negotiation Procedures, b) IEEE 802.1x
Authentication and c) IEEE 802.1x Key management.
The standards are being defined to naturally co-exist with pre-RSN networks that are currently deployed.
802.11n Standard
A recently formed (Oct 2003) IEEE official task group referred to as: 802.11n or "TGn" for the 100 Mbps
wireless physical layer standard protocol. Current published ratification date is December 2005. As of
February 2004, no draft specification has been written - It is expected to use both the 2.4 and 5GHz
frequencies.
AES (Advanced Encryption Standard)
A symmetric 128-bit block data encryption technique developed by Belgian cryptographers Joan Daemen
and Vincent Rijmen. The U.S government adopted the algorithm as its encryption technique in October
2000, replacing the DES encryption it used. AES works at multiple network layers simultaneously. The
National Institute of Standards and Technology (NIST) of the U.S. Department of Commerce selected the
algorithm, called Rijndael (pronounced Rhine Dahl or Rain Doll), out of a group of five algorithms under
consideration, including one called MARS from a large research team at IBM. AES is expected to replace
WEP as a WLAN encryption method in 2003.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 3
July 2005 v3.0
Access Point (AP)
A wireless LAN transceiver or "base station" that can connect a wired LAN to one or many wireless devices.
Access points can also bridge to each other.
There are various types of access points, also referred to as base stations, used in both wireless and wired
networks. These include bridges, hubs, switches, routers and gateways. The differences between them are
not always precise, because certain capabilities associated with one can also be added to another. For
example, a router can do bridging, and a hub may also be a switch. But they are all involved in making sure
data is transferred from one location to another.
A bridge connects devices that all use the same kind of protocol. A router can connect networks that use
differing protocols. It also reads the addresses included in the packets and routes them to the appropriate
computer station, working with any other routers in the network to choose the best path to send the packets
on. A wireless hub or access point adds a few capabilities such as roaming and provides a network
connection to a variety of clients, but it does not allocate bandwidth. A switch is a hub that has extra
intelligence: It can read the address of a packet and send it to the appropriate computer station. A wireless
gateway is an access point that provides additional capabilities such as NAT routing, DHCP, firewalls,
security, etc.
Ad-Hoc mode
A client setting that provides independent peer-to-peer connectivity in a wireless LAN. An alternative set-up
is one where PCs communicate with each other through an AP. See access point and Infrastructure mode.
Bandwidth
The amount of transmission capacity that is available on a network at any point in time. Available bandwidth
depends on several variables such as the rate of data transmission speed between networked devices,
network overhead, number of users, and the type of device used to connect PCs to a network. It is similar to
a pipeline in that capacity is determined by size: the wider the pipe, the more water can flow through it; the
more bandwidth a network provides, the more data can flow through it. Standard 802.11b provides a
bandwidth of 11 Mbps; 802.11a and 802.11g provide a bandwidth of 54 Mbps.
Bits per second (bps)
A measure of data transmission speed over communication lines based on the number of bits that can be sent
or received per second. Bits per second—bps—is often confused with bytes per second—Bps. While "bits"
is a measure of transmission speed, "bytes" is a measure of storage capability. 8 bits make a byte, so if a
wireless network is operating at a bandwidth of 11 megabits per second (11 Mbps or 11 Mbits/sec), it is
sending data at 1.375 megabytes per second (1.375 Mbps).
Bluetooth Wireless Technology
A technology specification for linking portable computers, personal digital assistants (PDAs) and mobile
phones for short-range transmission of voice and data across a global radio frequency band without the need
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
4Glossary
July 2005 v3.0
for cables or wires. Bluetooth is a frequency-hopping technology in the 2.4 GHz frequency spectrum, with a
range of 30 feet and up to 11Mbps raw data throughput.
Bridge
A product that connects a local area network (LAN) to another local area network that uses the same
protocol (for example, wireless, Ethernet or token ring). Wireless bridges are commonly used to link
buildings in campuses.
Client or Client devices
Any computer connected to a network that requests services (files, print capability) from another member of
the network. Clients are end users. Wi-Fi client devices include PC Cards that slide into laptop computers,
mini-PCI modules embedded in laptop computers and mobile computing devices, as well as USB and PCI/
ISA bus Wi-Fi radios. Client devices usually communicate with hub devices like access points and
gateways.
Collision avoidance
A network node characteristic for proactively detecting that it can transmit a signal without risking a
collision, thereby ensuring a more reliable connection.
Crossover cable
A special cable used for networking two computers without the use of a hub. Crossover cables may also be
required for connecting a cable or DSL modem to a wireless gateway or access point. Instead of the signals
transferring in parallel paths from one set of plugs to another, the signals "crossover." If an eight-wire cable
was being used, for instance, the signal would start on pin one at one end of the cable and end up on pin
eight at the other end. They "cross-over" from one side to the other.
CSMA-CA (Carrier Sense Multiple Action)
CSMA/CA is the principle medium access method employed by IEEE 802.11 WLANs. It is a "listen before
talk": method of minimizing (but not eliminating) collisions caused by simultaneous transmission by
multiple radios. IEEE 802.11 states collision avoidance method rather than collision detection must be used,
because the standard employs half duplex radios—radios capable of transmission or reception—but not both
simultaneously.
Unlike conventional wired Ethernet nodes, a WLAN station cannot detect a collision while transmitting. If a
collision occurs, the transmitting station will not receive an ACKnowledge packet from the intended receive
station. For this reason, ACK packets have a higher priority than all other network traffic. After completion
of a data transmission, the receive station will begin transmission of the ACK packet before any other node
can begin transmitting a new data packet. All other stations must wait a longer pseudo randomized period of
time before transmitting. If an ACK packet is not received, the transmitting station will wait for a subsequent
opportunity to retry transmission
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 5
July 2005 v3.0
CSMA-CD (Carrier Sense Multiple Action/Collision Detection)
A method of managing traffic and reducing noise on an Ethernet network. A network device transmits data
after detecting that a channel is available. However, if two devices transmit data simultaneously, the sending
devices detect a collision and retransmit after a random time delay.
DHCP (Dynamic Host Configuration Protocol)
A utility that enables a server to dynamically assign IP addresses from a predefined list and limit their time
of use so that they can be reassigned. Without DHCP, an IT Manager would have to manually enter in all the
IP addresses of all the computers on the network. When DHCP is used, whenever a computer logs onto the
network, it automatically gets an IP address assigned to it.
Diversity: antenna
A type of antenna system that uses two antennas to maximize reception and transmission quality and reduce
interference
DNS (Domain Name System)
A program that translates URLs to IP addresses by accessing a database maintained on a collection of
Internet servers. The program works behind the scenes to facilitate surfing the Web with alpha versus
numeric addresses. A DNS server converts a name like mywebsite.com to a series of numbers like
107.22.55.26. Every website has its own specific IP address on the Internet.
Encryption Key
An alphanumeric (letters and/or numbers) series that enables data to be encrypted and then decrypted so it
can be safely shared among members of a network. WEP uses an encryption key that automatically encrypts
outgoing wireless data. On the receiving side, the same encryption key enables the computer to
automatically decrypt the information so it can be read.
Enhanced Data Encryption through TKIP
To improve data encryption, Wi-Fi Protected Access utilizes its Temporal Key Integrity Protocol (TKIP).
TKIP provides important data encryption enhancements including a per-packet key mixing function, a
message integrity check (MIC) named Michael, an extended initialization vector (IV) with sequencing rules,
and a re-keying mechanism. Through these enhancements, TKIP addresses all WEP known vulnerabilities.
Enterprise-level User Authentication via 802.1x and EAP
WEP has almost no user authentication mechanism. To strengthen user authentication, Wi-Fi Protected
Access implements 802.1x and the Extensible Authentication Protocol (EAP). Together, these
implementations provide a framework for strong user authentication. This framework utilizes a central
authentication server, such as RADIUS, to authenticate each user on the network before they join it, and also
employs "mutual authentication" so that the wireless user doesn’t accidentally join a rogue network that
might steal its network credentials.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
6Glossary
July 2005 v3.0
ESSID (more commonly referred to as SSID – Short Set Identifier)
The identifying name of an 802.11 wireless network. When you specify your correct ESSID in your client
setup you ensure that you connect to your wireless network rather than another network in range. (See
SSID.) The ESSID can be called by different terms, such as Network Name, Preferred Network, SSID or
Wireless LAN Service Area.
Ethernet
International standard networking technology for wired implementations. Basic 10BaseT networks offer a
bandwidth of about 10 Mbps. Fast Ethernet (100 Mbps) and Gigabit Ethernet (1000 Mbps) are becoming
popular.
Firewall
A system that secures a network and prevents access by unauthorized users. Firewalls can be software,
hardware or a combination of both. Firewalls can prevent unrestricted access into a network, as well as
restrict data from flowing out of a network.
Gateway
In the wireless world, a gateway is an access point with additional software capabilities such as providing
NAT and DHCP. Gateways may also provide VPN support, roaming, firewalls, various levels of security,
etc.
Hot Spot (also referred to as Public Access Location)
A place where you can access Wi-Fi service. This can be for free or for a fee. HotSpots can be inside a coffee
shop, airport lounge, train station, convention center, hotel or any other public meeting area. Corporations
and campuses are also implementing HotSpots to provide wireless Internet access to their visitors and
guests. In some parts of the world, HotSpots are known as CoolSpots.
Hub
A multiport device used to connect PCs to a network via Ethernet cabling or via Wi-Fi. Wired hubs can have
numerous ports and can transmit data at speeds ranging from 10 Mbps to multigigabyte speeds per second.
A hub transmits packets it receives to all the connected ports. A small wired hub may only connect 4
computers; a large hub can connect 48 or more. Wireless hubs can connect hundreds.
HZ (‘hertz”)
The international unit for measuring frequency, equivalent to the older unit of cycles per second. One
megahertz (MHz) is one million hertz. One gigahertz (GHz) is one billion hertz. The standard US electrical
power frequency is 60 Hz, the AM broadcast radio frequency band is 535—1605 kHz, the FM broadcast
radio frequency band is 88—108 MHz, and wireless 802.11b LANs operate at 2.4 GHz.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 7
July 2005 v3.0
IEEE (Institute of Electrical and Electronics Engineers)
A membership organization (www.ieee.org) that includes engineers, scientists and students in electronics
and allied fields. It has more than 300,000 members and is involved with setting standards for computers and
communications.
IEEE 802.11
A set of specifications for LANs from The Institute of Electrical and Electronics Engineers (IEEE). Most
wired networks conform to 802.3, the specification for CSMA/CD based Ethernet networks or 802.5, the
specification for token ring networks. 802.11 defines the standard for wireless LANs encompassing three
incompatible (non-interoperable) technologies: Frequency Hopping Spread Spectrum (FHSS), Direct
Sequence Spread Spectrum (DSSS) and Infrared. WECA’s (Wireless Ethernet Compatibility Alliance – now
Wi-Fi Alliance) focus is on 802.11b, an 11 Mbps high-rate DSSS standard for wireless networks.
Infrastructure mode
A client setting providing connectivity to an access point (AP). As compared to Ad-Hoc mode, whereby PCs
communicate directly with each other, clients set in Infrastructure Mode all pass data through a central AP.
The AP not only mediates wireless network traffic in the immediate neighborhood, but also provides
communication with the wired network. See Ad-Hoc and AP.
IP (Internet Protocol) address
A 32-bit number that identifies each sender or receiver of information that is sent across the Internet. An IP
address has two parts: an identifier of a particular network on the Internet and an identifier of the particular
device (which can be a server or a workstation) within that network.
ISO Network Model
A network model developed by the International Standards Organization (ISO) that consists of seven
different levels, or layers. By standardizing these layers, and the interfaces in between, different portions of
a given protocol can be modified or changed as technologies advance or systems requirements are altered.
The seven layers are:
• Physical
• Data Link
•Network
• Transport
• Session
• Presentation
• Application
The IEEE 802.11 Standard encompasses the physical layer (PHY) and the lower portion of the data link
layer. The lower portion of the data link layer is often referred to as the Medium Access Controller (MAC)
sublayer.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
8Glossary
July 2005 v3.0
MAC (Media Access Control)
Every wireless 802.11 device has its own specific MAC address hard-coded into it. This unique identifier
can be used to provide security for wireless networks. When a network uses a MAC table, only the 802.11
radios that have had their MAC addresses added to that network's MAC table will be able to get onto the
network.
Mesh Networks
Also called mesh topology, mesh is a network topology in which devices are connected with many
redundant interconnections between network nodes. In a full mesh topology every node has a connection to
every other node in the network. Mesh networks may be wired or wireless.
In a wireless mesh example, each of the spheres below represent a mesh router. Corporate servers and
printers may be shared by attaching to each mesh router. For wireless access to the mesh, an access point
must be attached to any one of the mesh routers.
Multiple Input Multiple Output (MIMO)
MIMO refers to radio links with multiple antennas at the transmitter and the receiver side to improve the
performance of the wireless link.
NAT (Network Address Translation)
A network capability that enables a houseful of computers to dynamically share a single incoming IP
address from a dial-up, cable or xDSL connection. NAT takes the single incoming IP address and creates
new IP address for each client computer on the network.
Network name
Identifies the wireless network for all the shared components. During the installation process for most
wireless networks, you need to enter the network name or SSID. Different network names are used when
setting up your individual computer, wired network or workgroup.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 9
July 2005 v3.0
NIC (Network Interface Card)
A type of PC adapter card that either works without wires (Wi-Fi) or attaches to a network cable to provide
two-way communication between the computer and network devices such as a hub or switch. Most office
wired NICs operate at 10 Mbps (Ethernet), 100 Mbps (Fast Ethernet) or 10/100 Mbps dual speed.
High-speed Gigabit and 10 Gigabit NIC cards are also available. See PC Card.
PC card (also called PCMCIA)
A removable, credit-card-sized memory or I/O (input/output) device that fits into a Type 2 PCMCIA
standard slot, PC Cards are used primarily in PCs, portable computers, PDAs and laptops. PC Card
peripherals include Wi-Fi cards, memory cards, modems, NICs, hard drives, etc.
PCI adapter
A high-performance I/O computer bus used internally on most computers. Other bus types include ISA and
AGP. PCIs and other computer buses enable the addition of internal cards that provide services and features
not supported by the motherboard or other connectors.
Peer-to-peer network (also called Ad-Hoc in WLANs)
A wireless or wired computer network that has no server or central hub or router. All the networked PCs are
equally able to act as a network server or client, and each client computer can talk to all the other wireless
computers without having to go through an access point or hub. However, since there is no central base
station to monitor traffic or provide Internet access, the various signals can collide with each other, reducing
overall performance.
PHY
The lowest layer within the OSI Network Model. It deals primarily with transmission of the raw bit stream
over the PHYsical transport medium. In the case of wireless LANs, the transport medium is free space. The
PHY defines parameters such as data rates, modulation method, signaling parameters, transmitter/receiver
synchronization, etc. Within an actual radio implementation, the PHY corresponds to the radio front end and
baseband signal processing sections.
Plug and Play
A computer system feature that provides for automatic configuration of add-ons and peripheral devices such
as wireless PC Cards, printers, scanners and multimedia devices.
Proxy server
Used in larger companies and organizations to improve network operations and security, a proxy server is
able to prevent direct communication between two or more networks. The proxy server forwards allowable
data requests to remote servers and/or responds to data requests directly from stored remote server data
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
10 Glossary
July 2005 v3.0
Range
The distance away from your access point that your wireless network can reach. Most Wi-Fi systems will
provide a range of a hundred feet or more. Depending on the environment and the type of antenna used,
Wi-Fi signals can have a range of up to mile
Residential gateway
A wireless device that connects multiple PCs, peripherals and the Internet on a home network. Most Wi-Fi
residential gateways provide DHCP and NAT as well.
RJ-45
Standard connectors used in Ethernet networks. Even though they look very similar to standard RJ-11
telephone connectors, RJ-45 connectors can have up to eight wires, whereas telephone connectors have only
four.
Roaming
Moving seamlessly from one AP coverage area to another with your laptop or desktop with no loss in
connectivity.
Rogue Access Point
"Rogue AP" is a term used to describe an unauthorized access point that is connected on the main home or
corporate network or operating in a stand-alone mode (in a parking lot or in a neighbor's building). Rogue
APs, by definition, are not under the management of network administrators and do not conform to network
security policies and may present a severe security risk. Ideally, it is best to have some type of WLAN
system that does not allow rogue access points to easily be added to an existing WLAN.
Router
A device that forwards data packets from one local area network (LAN) or wide area network (WAN) to
another. Based on routing tables and routing protocols, routers can read the network address in each
transmitted frame and make a decision on how to send it via the most efficient route based on traffic load,
line costs, speed, bad connections, etc.
Satellite broadband
A wireless high-speed Internet connection provided by satellites. Some satellite broadband connections are
two-way—up and down. Others are one-way, with the satellite providing a high-speed downlink and then
using a dial-up telephone connection or other land-based system for the uplink to the Internet.
Server
A computer that provides its resources to other computers and devices on a network. These include print
servers, Internet servers and data servers. A server can also be combined with a hub or router.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 11
July 2005 v3.0
Site survey
The process whereby a wireless network installer inspects a location prior to putting in a wireless network.
Site surveys are used to identify the radio- and client-use properties of a facility so that access points can be
optimally placed.
SSID (also called ESSID)
A 32-character unique identifier attached to the header of packets sent over a WLAN that acts as a password
when a mobile device tries to connect to the BSS. (Also called ESSID.) The SSID differentiates one WLAN
from another, so all access points and all devices attempting to connect to a specific WLAN must use the
same SSID.
A device will not be permitted to join the BSS unless it can provide the unique SSID. Because an SSID can
be sniffed in plain text from a packet, it does not supply any security to the network. An SSID is also
referred to as a Network Name because essentially it is a name that identifies a wireless network.
SSL (Secure Sockets Layer)
Commonly used encryption scheme used by many online retail and banking sites to protect the financial
integrity of transactions. When an SSL session begins, the server sends its public key to the browser. The
browser then sends a randomly generated secret key back to the server in order to have a secret key
exchange for that session.
Subnetwork or Subnet
Found in larger networks, these smaller networks are used to simplify addressing between numerous
computers. Subnets connect to the central network through a router, hub or gateway. Each individual
wireless LAN will probably use the same subnet for all the local computers it talks to.
Switch
A type of hub that efficiently controls the way multiple devices use the same network so that each can
operate at optimal performance. A switch acts as a networks traffic cop: rather than transmitting all the
packets it receives to all ports as a hub does, a switch transmits packets to only the receiving port.
TCP (Transmission Control Protocol)
A protocol used along with the Internet Protocol (IP) to send data in the form of individual units (called
packets) between computers over the Internet. While IP takes care of handling the actual delivery of the
data, TCP takes care of keeping track of the packets that a message is divided into for efficient routing
through the Internet.
For example, when a web page is downloaded from a web server, the TCP program layer in that server
divides the file into packets, numbers the packets, and then forwards them individually to the IP program
layer. Although each packet has the same destination IP address, it may get routed differently through the
network. At the other end, TCP reassembles the individual packets and waits until they have all arrived to
forward them as a single file.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
12 Glossary
July 2005 v3.0
TCP/IP
The underlying technology behind the Internet and communications between computers in a network. The
first part, TCP, is the transport part, which matches the size of the messages on either end and guarantees that
the correct message has been received. The IP part is the user's computer address on a network. Every
computer in a TCP/IP network has its own IP address that is either dynamically assigned at startup or
permanently assigned. All TCP/IP messages contain the address of the destination network as well as the
address of the destination station. This enables TCP/IP messages to be transmitted to multiple networks
(subnets) within an organization or worldwide.
TKIP
A security feature that is a WEP enhancement: Temporal Key Integrity Protocol and Message Integrity
Check (MIC) is a modification of WEP to defend against known attacks (WEP+ four patches for key
mixing, message integrity, rekeying, initialization vector protection)
USB (Universal Serial Bus)
A high-speed bidirectional serial connection between a PC and a peripheral that transmits data at the rate of
12 megabits per second. The new USB 2.0 specification provides a data rate of up to 480 Mbps, compared to
standard USB at only 12 Mbps. 1394, FireWire and iLink all provide a bandwidth of up to 400 Mbps.
VoIP (Voice over IP)
Voice transmission using Internet Protocol to create digital packets distributed over the Internet. VoIP can be
less expensive than voice transmission using standard analog packets over POTS (Plain Old Telephone
Service).
VPN (Virtual Private Network)
A type of technology designed to increase the security of information transferred over the Internet. VPN can
work with either wired or wireless networks, as well as with dial-up connections over POTS. VPN creates a
private encrypted tunnel from the end user's computer, through the local wireless network, through the
Internet, all the way to the corporate servers and database.
War Chalking
The act of making chalk marks on outdoor surfaces (walls, sidewalks, buildings, sign posts, trees) to indicate
the existence of an open wireless network connection, usually offering an Internet connection so that others
can benefit from the free wireless access. The open connections typically come from the access points of
wireless networks located within buildings to serve enterprises. The chalk symbols indicate the type of
access point that is available at that specific spot.
There are three basic designs that are currently used: a pair of back-to-back semicircles, which denotes an
open node; a closed circle, which denotes a closed node; a closed circle with a “W” inside, which denotes a
node equipped with WEP. Warchalkers also draw identifiers above the symbols to indicate the password that
can be used to access the node, which can easily be obtained with sniffer software.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 13
July 2005 v3.0
As a recent development, the debate over the legality of warchalking is still going on.
The practice stems from the U.S. Depression-era culture of wandering hobos who would make marks
outside of homes to indicate to other wanderers whether the home was receptive to drifters or was
inhospitable.
War Driving
War driving is the act of locating and possibly exploiting connections to wireless local area networks while
driving around a city or elsewhere. To do war driving, you need a vehicle, a computer (which can be a
laptop), a wireless Ethernet card set to work in promiscuous mode, and some kind of an antenna which can
be mounted on top of or positioned inside the car. Because a wireless LAN may have a range that extends
beyond an office building, an outside user may be able to intrude into the network, obtain a free Internet
connection, and possibly gain access to company records and other resources.
Some people have made a sport out of war driving, in part to demonstrate the ease with which wireless
LANs can be compromised. With an omnidirectional antenna and a geophysical positioning system (GPS),
the war driver can systematically map the locations of 802.11b wireless access points.
WEP (Wired Equivalent Privacy)
Basic wireless security provided by Wi-Fi. In some instances, WEP may be all a home or small-business
user needs to protect wireless data. WEP is available in 40-bit (also called 64-bit), or in 108-bit (also called
128-bit) encryption modes. As 108-bit encryption provides a longer algorithm that takes longer to decode, it
can provide better security than basic 40-bit (64-bit) encryption.
Wi-Fi (Wireless Fidelity)
Another name for IEEE 802.11b. Products certified as Wi-Fi are interoperable with each other even if they
are from different manufacturers. A user with a Wi-Fi product can use any brand of access point with any
other brand of client hardware that is built to the Wi-Fi standard.
Wi-Fi Alliance (formerly WECA – Wireless Ethernet Compatibility Alliance)
The Wi-Fi Alliance is a nonprofit international association formed in 1999 to certify interoperability of
wireless Local Area Network products based on IEEE 802.11 specification. Currently the Wi-Fi Alliance
has 193 member companies from around the world, and 509 products have received Wi-Fi certification since
certification began in March of 2000. The goal of the Wi-Fi Alliance's members is to enhance the user
experience through product interoperability (www.weca.net).
Wi-Fi Protected Access (WPA)
WPA is a security technology for wireless networks that improves on the authentication and encryption
features of WEP (Wired Equivalent Privacy). In fact, WPA was developed by the networking industry in
response to the shortcomings of WEP.
One of the key technologies behind WPA is the Temporal Key Integrity Protocol (TKIP). TKIP addresses
the encryption weaknesses of WEP. Another key component of WPA is built-in authentication that WEP
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
14 Glossary
July 2005 v3.0
does not offer. With this feature, WPA provides roughly comparable security to VPN tunneling with WEP,
with the benefit of easier administration and use. This is similar to 802.1x support and requires a RADIUS
server in order to implement. The Wi-Fi Alliance will call this, 'WPA-Enterprise.'
One variation of WPA is called WPA Pre Shared Key or WPA-PSK for short - this provides an
authentication alternative to an expensive RADIUS server. WPA-PSK is a simplified but still powerful form
of WPA most suitable for home Wi-Fi networking. To use WPA-PSK, a person sets a static key or
"passphrase" as with WEP. But, using TKIP, WPA-PSK automatically changes the keys at a preset time
interval, making it much more difficult for hackers to find and exploit them. The Wi-Fi Alliance will call
this, 'WPA-Personal.'
Wi-Fi Protected Access and IEEE 802.11i Comparison
Wi-Fi Protected Access will be forward-compatible with the IEEE 802.11i security specification currently
under development by the IEEE. Wi-Fi Protected Access is a subset of the current 802.11i draft, taking
certain pieces of the 802.11i draft that are ready to bring to market today, such as its implementation of
802.1x and TKIP. These features can also be enabled on most existing Wi-Fi CERTIFIED products as a
software upgrade. The main pieces of the 802.11i draft that are not included in Wi-Fi Protected Access are
secure IBSS, secure fast handoff, secure de-authentication and disassociation, as well as enhanced
encryption protocols such as AES-CCMP. These features are either not yet ready for market or will require
hardware upgrades to implement.
Wi-Fi Protected Access for the Enterprise
Wi-Fi Protected Access effectively addresses the WLAN security requirements for the enterprise and
provides a strong encryption and authentication solution prior to the ratification of the IEEE 802.11i
standard. In an enterprise with IT resources, Wi-Fi Protected Access should be used in conjunction with an
authentication server such as RADIUS to provide centralized access control and management. With this
implementation in place, the need for add-on solutions such as VPNs may be eliminated, at least for the
express purpose of securing the wireless link in a network.
Wi-Fi Protected Access for Home/SOHO
In a home or Small Office/ Home Office (SOHO) environment, where there are no central authentication
servers or EAP framework, Wi-Fi Protected Access runs in a special home mode. This mode, also called
Pre-Shared Key (PSK), allows the use of manually-entered keys or passwords and is designed to be easy to
set up for the home user. All the home user needs to do is enter a password (also called a master key) in their
access point or home wireless gateway and each PC that is on the Wi-Fi wireless network. Wi-Fi Protected
Access takes over automatically from that point. First, the password allows only devices with a matching
password to join the network, which keeps out eavesdroppers and other unauthorized users. Second, the
password automatically kicks off the TKIP encryption process, described above.
Wi-Fi Protected Access for Public Access
The intrinsic encryption and authentication schemes defined in Wi-Fi Protected Access may also prove
useful for Wireless Internet Service Providers (WISPs) offering Wi-Fi public access in "hot spots" where
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
Glossary 15
July 2005 v3.0
secure transmission and authentication is particularly important to users unknown to each other. The
authentication capability defined in the specification enables a secure access control mechanism for the
service providers and for mobile users not utilizing VPN connections.
Wi-Fi Protected Access in "Mixed Mode" Deployment
In a large network with many clients, a likely scenario is that access points will be upgraded before all the
Wi-Fi clients. Some access points may operate in a "mixed mode", which supports both clients running
Wi-Fi Protected Access and clients running original WEP security. While useful for transition, the net effect
of supporting both types of client devices is that security will operate at the less secure level (WEP),
common to all the devices. Therefore, organizations will benefit by accelerating the move to Wi-Fi Protected
Access for all Wi-Fi clients and access points.
WiMAX
An IEEE 802.16 Task Group that provides a specification for fixed broadband wireless access systems
employing a point-to-multipoint (PMP) architecture. Task Group 1 of IEEE 802.16 developed a
point-to-multipoint broadband wireless access standard for systems in the frequency range 10-66 GHz. The
standard covers both the Media Access Control (MAC) and the physical (PHY) layers. Ratification is
expected in second half of 2004.
Wireless Multimedia (WMM)
WMM (Wireless Multimedia) is a subset of the 802.11e standard. WMM allows wireless traffic to have a
range of priorities, depending on the kind of data. Time-dependent information, like video, audio, or voice
will have a higher priority than normal traffic. For WMM to function correctly, wireless clients must also
support WMM.
Wireless Networking
Wireless Networking refers to the infrastructure enabling the transmission of wireless signals. A network
ties things together and enables resource sharing.
WLAN (Wireless LAN)
Also referred to as LAN. A type of local-area network that uses wireless or high-frequency radio waves
rather than wires to communicate between nodes.
Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302
16 Glossary
July 2005 v3.0
Other manuals for WG302 - 802.11g ProSafe Wireless Access...
5
This manual suits for next models
2
Other NETGEAR Wireless Access Point manuals
NETGEAR
NETGEAR WG302v2 - ProSafe 802.11g Wireless Access... User manual
NETGEAR
NETGEAR WAC505 User manual
NETGEAR
NETGEAR WG302v1 - ProSafe 802.11g Wireless Access... Installation instructions
NETGEAR
NETGEAR WAX214 User manual
NETGEAR
NETGEAR WAX610 User manual
NETGEAR
NETGEAR ME103 - 802.11b ProSafe Wireless Access... User manual
NETGEAR
NETGEAR WNAP210 User manual
NETGEAR
NETGEAR WAC720 User manual
NETGEAR
NETGEAR ProSafe WNAP320 User manual
NETGEAR
NETGEAR ProSafe Premium WNDAP660 User manual
NETGEAR
NETGEAR WAC104 User manual
NETGEAR
NETGEAR WN802T-100NAS User manual
NETGEAR
NETGEAR WAC510 User manual
NETGEAR
NETGEAR ProSafe WAGL102 User manual
NETGEAR
NETGEAR WAG302v1 - ProSafe Dual Band Wireless Access... User manual
NETGEAR
NETGEAR WAX638E User manual
NETGEAR
NETGEAR WG102 - ProSafe Wireless Access Point User manual
NETGEAR
NETGEAR HE102 - Wireless Access Point User manual
NETGEAR
NETGEAR Orbi RBE971 User manual
NETGEAR
NETGEAR XWN5001 User manual
Popular Wireless Access Point manuals by other brands
Cisco
Cisco Aironet 3600 Series Getting started guide
Hawking
Hawking NK340W Specifications
Extreme Networks
Extreme Networks AP-8533 Regulatory guide
Samsung
Samsung SmartThings Wifi ET-WV525 user manual
EnGenius
EnGenius ENH500 Technical specifications
ZyXEL Communications
ZyXEL Communications nwa1100-n user guide
