Why can't I enter the maximum of 16 characters (128 bits) when entering a WEP encryption string?
Wired Equivalent Privacy (WEP) is the oldest and also the least safe encryption procedure with which WLAN transmissions can be protected against unauthorized access according to the 802.11 standard. In this procedure a user password is used as a key which in turn is used to generate a sequence of pseudo random numbers. Each character of the message to be transmitted is then encrypted or decoded by the recipient with the next number of this sequence.
The procedure is relatively simple and can by comparison be easily compromised on two counts. On the one hand upon connection setup the key must be exchanged between sender and recipient, which of course is not encrypted. On the other hand, statistical methods can be used to determine characteristics of the messages transferred, which in turn permit an analysis to be made of the key used as long as there are enough messages for the analysis. For these reasons WEP is generally no longer considered to be sufficient today.
When configuring with a Windows system you might get this or a similar error message when entering the network key:
For the configuration of a SCALANCE W788-PRO (6GK5788-1ST00) the error message looks like this:
The actual WEP data package consists of data and the 32-bit long checksum ICV (Integrity Check Value). This encrypted with the IV-WEP key combination and the initialization vector (IV) is placed in front of it all. From the IV the recipient can finally use the RCA key (default key) to compute the plaintext of the message.
Fig. 04 - WEP data package
For the actual maximum key string there are therefore only 104 bits available (128 bits total - 24 bits initialization vector) or 13 characters.
CRC32, just like RC4, is linear and is thus considered as mathematically uncertain. It is therefore possible to calculate the bits that must change in the checksum if you change the secret text.
To ensure better protection for your network you should
- use the WPA or WPA2 encryption (not supported by CP1515 (6GK1151-5AA00))
- protect yourself via additional encryption such as VPN, for example.
WEP, WPA, WPA2, Security, WLAN, Encryption
- You have a technical question / problem: Ask the Technical Support
- You want to discuss in our forum and exchange experiences with other users
- You want to create CAx data for one or more products
- You would like to send us feedback on this Entry