Chapter 7SecurityWinlink 1000’s integrated advanced encryption support providesenhanced air interface security for carriers and private networks byensuring user data protection with one of the most sophisticatedcommercially available combined encryption and authenticationtechniques, CCM/AES. This technique combines messageauthentication (preventing anti-spoofing and replay protection) withcommercial encryption, and complies with the IEEE 802.11i (phase iii)security recommendations.CCM/AES uses a symmetric 128-bit encryption key (EK), and a nonce,and provides both message encryption and authenticating signature.The nonce mechanism enables the receiver to remember alreadyreceived genuine messages and reject all replayed messages.Initial encryption and authentication is based on a user-defined masterkey (Link Password). While standard Wireless LAN encrypts only theEthernet Payload, the AES encrypts both the source and destinationMAC addresses.Entering and Changing PasswordsThere are two passwords necessary to use the WinLink system:• Management Password required for running the Managementsoftware• Link Password used for encryption purposes. This linkpassword is entered when installing or configuring the link.Changing the Management PasswordÆ To change the management password1. From the Tools menu, select Change Password.The Change Password dialog box appears.2. Enter the current password, and the new password.3. Click OK to confirm.
