MatrixSSL Wi-Fi Solutions
PeerSec Networks MatrixSSL provides a complete solution for 802.11 wireless security.
Wi-Fi Security Highlights
- 802.1x standard specifies EAP-TLS security
- MatrixSSL provides Wi-Fi security, secure management for Wireless access points and devices within a single library
- Under 50KB library fits within standard access point flash memory
- Eliminates customer concerns for security when using Wi-Fi
- SSL/TLS support for standard access point operating systems including VxWorks and embedded Linux
First Generation Wi-Fi Security
The initial security standard for 802.11b and 802.11g Wi-Fi is WEP (Wired Equivalent Privacy). This protocol was designed from scratch, and several major security problems were found, making customers of Wi-Fi solutions hesitant to use it for transport of sensitive data. The WEP situation has become a standard example of why it's typically better to go with an established standard.
Second Generation Wi-Fi Security
Current Wi-Fi security standards (802.1x
) define the use of the TLS protocol encapsulated within the Extensible Authentication Protocol (EAP) as one of the strongest security mechanisms for Wi-Fi. Using EAP-TLS provides well regarded, standards based security between an access point and a Wi-Fi client.
MatrixSSL and EAP-TLS
MatrixSSL implements client and server TLS protocol with X.509 authentication for mutual authentication. This allows Wireless LAN clients to authenticate (typically through a Radius server) and exchange secure session keys. MatrixSSL is ideal for integration with existing Wi-Fi network stacks because the APIs operate independantly of a transport or sockets layer. Encoding and decoding of TLS records is done directly on buffers within the Wireless network stack. MatrixSSL is an ideal solution for providing EAP-TLS support to Wireless access points and devices.
Web based configuration interfaces are standard on Wifi access points, and allow full configuration of the device. Using MatrixSSL to secure the Web server on the access points not only makes remote management secure, it also secures the management from within the enterprise. When the enterprise is a college campus or coffee shop, the need to secure the Web interface becomes clear.
MatrixSSL is under 50KB in flash memory; ideal for wireless access points and devices that operate on Wi-Fi networks. These devices typically contain 2-4 MB of flash storage. As a single library, MatrixSSL secures the entire Wi-Fi connection and the management interface.