Enhanced Open

Until now, hotspots were mainly operated without encryption, meaning that the data transmitted over the wireless interface was open to inspection. Also, the widespread practice of securing a hotspot with WPA2-PSK and publicly posting the shared key provides limited security. Since WPA2-PSK does not provide Perfect Forward Secrecy, an attacker who knows the key can use it to decrypt recordings of data traffic. The Enhanced Open method minimizes these risks. Clients that support this method use encrypted communication to prevent other users in the same radio cell from eavesdropping on their communications. The threat of a man-in-the-middle attack remains, but the risk is much lower than when using an unencrypted open hotspot.

Public Spot with Enhanced Open

To use Enhanced Open with the Public Spot, see Setting up a secure hotspot with Enhanced Open.

Configuration

Enhanced Open is set as the WLAN encryption method under Wireless LAN > General > Interfaces > Logical WLAN settings. That is all you need to do to encrypt communications for clients that support this method.





www.lancom-systems.com

LANCOM Systems GmbH | Adenauerstr. 20/B2 | 52146 Wuerselen | Germany | E-Mail info@lancom.de

LANCOM Logo