Why change your Wi-Fi from WPA2 to WPA3?
WPA3 aims to improve authentication and encryption while making connections even easier. 14 years after the implementation of WPA2, the WPA3 protocol was introduced by the Wi-Fi Alliance in early 2018 and should arrive in 2019 on the first peripherals.
The classic WPA2-PSK authentication will be replaced by WPA3-SAE (Simultaneous Authentication of Equals). The new standard will use 128-bit encryption key and Forward Secrecy protocol to resist offline dictionary attacks while improving key exchange security. On the user side no additional complexity to the connection.
On the enterprise side, we are moving to 192-bit key-based encryption and will use a 48-bit initialization vector as requested by sensitive organizations or governments to ensure a minimum level of security.
WPA3 also aims to simplify the connection process for equipment that does not necessarily have a visual configuration interface. With the explosion of IoT and the modernization of industrial equipment this improvement is welcome in companies.
As for the Guest access (hotels, airports, cities, etc.), WPA3 will reinforce the confidentiality of the data transmitted. Indeed, data encryption is set up individually. Each connection between a user and the access point will be encrypted with a unique key in order to avoid the most common Man-in-the-Middle attacks.
Existing hardware can fully support WPA3 as long as hardware specifications allow. However, it will be up to the manufacturers to carry the software updates allowing to use WPA3 or to impose the replacement by more recent hardware.
Our main partner HPE Aruba is already ready to integrate the WPA3 protocol into the existing hardware in order to maintain the infrastructures already deployed. This functionality will soon be available through a software update on compatible equipment.
However, WPA2 and WPA3 may coexist for a long time.
|Description||Protocol developed by the Wi-Fi Alliance in 2004 to secure WiFi networks to replace WEP and WPA.||Launch announced for 2018, WPA3 is the next generation protocol and increases the level of security.|
|Methods and improvements||WPA2 uses AES instead of RC4 and CCMP instead of TKIP.||WPA3-Personal uses 128-bit encryption key.WPA3-Enterprise uses 192-bit encryption key.
WPA3 replaces the traditional PSK with simultaneous authentication.
|Security ?||WPA2 is recommended instead of WEP and WPA. However, it is recommended not to use the WPS simplified connection features, which is not the case for WPA3.||WPA3 is more secure than WPA2, we strongly recommend to think about the implementation of the new standard in view of the growing needs in terms of Wifi and the multitudes of vulnerabilities discovered in recent years on existing protocols.|