WEP or WPA2?


You’re configuring an access point with MAC filtering and WEP encryption, but the security administrator says that WEP encryption should not be used. As a standard, the security administrator has selected WPA2 instead. Why would he insist on WPA2?

A) WPA2 is a smarter encryption technology and will automatically configure itself.

B) Vulnerabilities in WEP have been found, rendering the WEP encryption algorithms essentially worthless.

C) WPA2 is an international standard, and WEP is not.

D) There’s no technical difference between WEP and WPA2. The security administrator simply has a personal preference.


Answer: B) Vulnerabilities in WEP have been found, rendering the WEP encryption algorithms essentially worthless.



It was big news in 2001 when security researchers found some significant vulnerabilities with WEP (Wired Equivalent Privacy) that allowed almost anyone to crack the encrypted code in a matter of minutes. It only took a few months for the IEEE to respond with a new encryption standard named WPA. A final version of WPA was called WPA2, and almost everyone requires the newer WPA2 over the older (and insecure) WEP encryption.

The incorrect answers:
A) WPA2 is a smarter encryption technology and will automatically configure itself.
Although WPA2 is a great encryption technology, it’s no “smarter” than anything else. Although there are a number of simplified configuration options for WPA2, it still requires a bit of configuration. There’s no “automatic” mode for WPA2.

C) WPA2 is an international standard, and WEP is not.
The IEEE is an international standard, which means that both WEP and WPA2 are international standards. Although the frequencies used by wireless networks may differ between countries, the methodology for protecting the data remains consistent.

D) There’s no technical difference between WEP and WPA2. The security administrator simply has a personal preference.
There are significant technical differences between WEP and WPA2, and every security administrator should recognize the inherent insecurity of the older WEP encryption. Although it’s certainly a personal preference for most security folks, it’s also the technical preference.

Want to know more about securing wireless networks? Watch “Wireless Security”


A wireless network provides excellent mobility, but it also creates a number of security concerns. In this video, we’ll discuss wireless encryption types and aspects of access point security that include MAC filtering, SSID management, IP addressing, and firmware.