All routers come by default with an assigned security key that protects the Wi-Fi connection from unwanted users. However, the keys that come by default are far from being secure and are easy to obtain either through packet deduction, key dictionaries or brute force.
It is advisable to change the WiFi password whenever possible to prevent people from connecting to our network easily.
There are several types of keys and encryption for wireless connections. In this article we will explain what are and most recommended.
Without encryption
This option means that the Wi-Fi network is open to all users. Anyone can connect to our network without needing to know any password. This option is only recommended for public access points, in which any user can connect in an open and free way.
WEP encryption
This type of encryption was one of the first to be applied several years ago. It is a weak encryption and you can get the keys in a few minutes through programs that capture packages through false requests.
WEP encryption offers insufficient protection, so its use is not recommended.
WPA encryption
WPA was born from correcting the main weaknesses of WEP encryption.
Its most normal variant is WPA-Personal that uses a system of PSK keys or pre-shared keys in which the user specifies the key and all the users use that same password, which simplifies the task of remembering it.
For companies, it has a RADIUS system that allows users to identify themselves with a username and password instead of a global password.
WPA2 encryption
This method of encryption is the most recommended. It is the improvement of the past WPA and improves both the security and performance of wireless networks. It also has personal PSK keys and RADIUS authentication for business environments.
WPA2 and WPA are fully compatible with each other, so any device compatible with one of the standards will be compatible with the other.
TKIP or AES in WPA and WPA2 connections
The WPA and WPA2 keys can obtain an encryption of TKIP and AES data. The most recommended encryption to apply is AES, since it offers better protection to the network and allows higher Wi-Fi speeds than TKIP. Vulnerabilities have also recently been detected in TKIP that expose user data and their keys.
Conclusion.
Whenever possible we should choose as the best protection to our system:
- WPA2-Personal with AES encryption
We must avoid whenever possible the open connection method and WEP since they are those that most compromise the integrity of our wireless connection.
When configuring a password, we must be original. We must avoid using, for example, 1234567890 since in case of attack it will be an easy key to extract. We must use a long key, safe and easy to remember.
One tip when creating a key can be to change the letters "a" to "@", the "i" to "1" or "o" to "zeros". We can also alternate between uppercase and lowercase letters to make their deduction difficult.