Aerohive Networks™, a Cloud Networking leader, today announced, in a statement of direction, its intent to support Wi-Fi Alliance® Wi-Fi CERTIFIED WPA3™ Security.
Following today’s announcement from the Wi-Fi Alliance® detailing the new Wi-Fi CERTIFIED WPA3™ program for strengthening personal and enterprise access network authentication and encryption, Aerohive has reiterated its own commitment to protecting customer networks. As attackers continue to target enterprise Wi-Fi networks, Aerohive echoes the Wi-Fi Alliance’s view that security requirements must continue to evolve, signaling continued Wi-Fi CERTIFIED technology support, along with its own additional security innovations for enhanced threat protection.
The new Wi-Fi CERTIFIED program builds upon the existing WPA2 security by providing an enriched set of security features to create WPA3-Personal and WPA3-Enterprise. WPA3 will address many of the concerns surrounding legacy authentication and encryption methods on a shared network, helping enterprises prevent network vulnerabilities. Having implemented several innovative Wi-Fi security capabilities in preparation for the latest industry security movement, Aerohive believes access networks will be in their strongest position to welcome all manner of corporate, guest, BYOD, and IoT devices, without opening the door to typically associated exploits.
The Wi-Fi CERTIFIED WPA3 and Aerohive’s innovations are shaping highly secure networks of the future, with advances including:
Strengthened user privacy by mandating the use of the Advanced Encryption Standard (AES) and restricting the use of legacy protocols, such as WEP & TKIP. Aerohive has supported higher levels of encryption across its product portfolio since shipping the first products in 2007.
Superior password security by offering the choice to replace Pre-Shared Key (PSK) with Simultaneous Authentication of Equals (SAE). SAE delivers more resilient password-based authentication, offering protection against dictionary attacks and limiting password guess attempts. Aerohive identified PSK vulnerabilities in 2009 and introduced Private PSK (PPSK) to provide unique Pre-Shared Keys per user or device. In 2016, Aerohive recognized the security value of SAE, and took it one step further by engineering Private SAE (PSAE), a version with enhanced capabilities. With these continued security innovations, Aerohive is able to offer the highest level of password-based security: WPA2 PSK & PPSK for legacy clients and WPA3 SAE & PSAE for the new generation of WPA3 capable clients.
Improved network resiliency by mandating use of Protected Management Frames (PMF). PMF provides protection against 3rd-party eavesdropping or forging of management frames. PMF is another area where Aerohive was ahead of the curve, first implementing this technology years back in previous generations of its access points.
Lastly, improving cryptographic strength for government, defense, and other security-sensitive environments is crucial for security so WPA3-Enterprise offers an optional 192-bit security capability. Aerohive has gone a step further with its access points supporting 128-, 192-, and 256-bit security.
As outlined, Aerohive is fully committed to the security of Wi-Fi networks and the Wi-Fi Alliance Wi-Fi CERTIFIED WPA3 program. In order to maintain this level of commitment to security, Aerohive will add Wi-Fi CERTIFIED WPA3 compliance to its portfolio in 2018 to support the new generation of WPA3-compliant clients.