Figure 580 wpa(2)-psk authentication, Table 312 wireless security relational matrix, Security parameters summary – ZyXEL Communications 200 Series User Manual

Appendix E Wireless LANs

ZyWALL USG 100/200 Series User’s Guide

842

3 The AP and wireless clients generate a common PMK (Pairwise Master Key). The key

itself is not sent over the network, but is derived from the PSK and the SSID.

4 The AP and wireless clients use the TKIP or AES encryption process, the PMK and

information exchanged in a handshake to create temporal encryption keys. They use
these keys to encrypt data exchanged between them.

Figure 580 WPA(2)-PSK Authentication

Security Parameters Summary

Refer to this table to see what other security parameters you should configure for each
authentication method or key management protocol type. MAC address filters are not
dependent on how you configure these security features.

Table 312 Wireless Security Relational Matrix

AUTHENTICATION
METHOD/ KEY
MANAGEMENT PROTOCOL

ENCRYPTIO
N METHOD

ENTER
MANUAL KEY

IEEE 802.1X

Open

None

No

Disable

Enable without Dynamic WEP Key

Open

WEP

No

Enable with Dynamic WEP Key

Yes

Enable without Dynamic WEP Key

Yes

Disable

Shared

WEP

No

Enable with Dynamic WEP Key

Yes

Enable without Dynamic WEP Key

Yes

Disable

WPA

TKIP/AES

No

Enable

WPA-PSK

TKIP/AES

Yes

Disable

WPA2

TKIP/AES

No

Enable

WPA2-PSK

TKIP/AES

Yes

Disable