The buildup to Wi-Fi 6's ratification in early 2020 is in full swing, with speed and efficiency improvements dominating the narrative. But how does 802.11ax stack up when it comes to security? It's a fair question -- with a fairly complicated answer.
Any wireless network's security depends on how it has been implemented -- hopefully, based on situational requirements. For example, a cafe's Wi-Fi 6 guest network won't have the same security configuration for handling sensitive data as wireless workstations used by corporate employees, even if they both use 802.11ax access points.
This backdrop of heterogeneous security requirements doesn't change that much with the pending Wi-Fi 6 wireless standard.
WPA3, OWE and 802.11ax security
From a security perspective, some new options will gain traction in parallel with the adoption of 802.11ax. The recently introduced Wi-Fi Protected Access 3 (WPA3) Enterprise security standard offers bolstered authentication capabilities and improved encryption. WPA3 Enterprise is currently optional for mainstream enterprise clients, but experts predict it will gain favor quickly in business .11ax environments that use 802.1X-based central authentication.
WPA3's improvements over long-serving WPA2 will likely make it a mandatory part of Wi-Fi 6 eventually, but that evolution needs to play itself out. WPA3 also brings better security and convenience to personal networking and will show up in more devices over time, as with WPA3 Enterprise.
Another interesting security advancement is Opportunistic Wireless Encryption (OWE) for improved security on public networks, like hotels and airports. OWE will provide automatic encryption with no user intervention required, but it won't be terribly extensive. Neither OWE nor WPA3 Personal are requirements of 802.11ax, but they are all expected to mature together and become de facto integrated.
IoT and 802.11ax security
One of .11ax's more vocal promises is improved support for IoT devices, primarily from new power management mechanisms. It can be frustrating to get IoT devices without native UIs configured for a given network and that network's security profile.
The Wi-Fi Alliance is tackling this challenge with its Wi-Fi Easy Connect program. Easy Connect supports both WPA2 and the new WPA3 security levels. If the forecasted rising tide of 802.11ax IoT devices does materialize, Easy Connect will be pivotal to their network onboarding.
As I said previously, when it comes to 802.11ax and wireless security, things are complicated.
Dig Deeper on
Related Q&A from Lee Badman
Licensed frequency bands are reliable and offer better performance than unlicensed frequency bands, which are low cost and easy to deploy but ... Continue Reading
5G's killer applications have yet to be fully realized -- or defined -- but some potentials include higher capacity, improved connectivity, private ... Continue Reading
The internet connects users to the outside world. Wi-Fi connects devices within a business, which then connect to other network devices and out to ... Continue Reading