WPA-3 Enterprise expands upon WPA2 offering an optional mode of using 192-bit minimum strength security protocols and cryptographic tools to enhance the protection of sensitive data:
The following capabilities are now provided
– Authenticated encryption: 256-bit Galios/Counter Mode Protocol (GCMP-256)
– Key deviation and confirmation: 384-bit Hashed Message Authentication Mode (HMAC) with Secure Hash Algorithm (HMAC-SHA384)
– Key establishment and authentication: Elliptic Curve Diffie-Hellman (ECDH) exchange and Elliptic Curve Digital Signature Algorithm (ECDSA) using a 384-bit elliptic curve.
– Robust management frame protection: 256-bit Broadcast/Multicast Integrity Protocol Galios Message Authentication Code (BIP-GMAC-256)
The 192-bit security mode offered by WPA-3 Enterprise ensures the right combination of cryptographic tools are used and sets a consistent baseline of security within a WPA3 network.
