If you have a strange type of router that offers WPA2 in the TKIP or AES versions, choose AES. On most routers we’ve seen, the options are usually WEP, WPA (TKIP), and WPA2 (AES), with perhaps a WPA (TKIP) + WPA2 (AES) compatibility mode for good measure.
Theoretically, 802.11ac offers maximum speeds of 3.46 Gbps under optimal (read: perfect) conditions. In comparison, even 802.11n supports up to 300Mbps if you use WPA2 with AES. They do this to make sure that they are compatible with these older devices. Many modern Wi-Fi routers that support 802.11n and newer and faster standards will slow down to 54 Mbps if you enable WPA or TKIP in their options. WPA and TKIP compatibility options can also slow down your Wi-Fi network. RELATED: Understand routers, switches, and network hardware However, if security is an issue, you might just want to buy a new device made since 2006. If a device stops working, you can always change it again. Select this option and you will be able to see if something is wrong. Since your Wi-Fi enabled devices are probably over 8-10 years old, you should just choose WPA2-PSK (AES). Any device manufactured after 2006 with a “Wi-Fi” logo must support WPA2 encryption. In 2006, WPA2 certification became mandatory. WPA2 certification became available in 2004, ten years ago.
See also How to Disable Government and AMBER Alerts on iPhone This provides maximum compatibility with any older devices you might have, but also allows an attacker to break into your network by breaking the most vulnerable WPA and TKIP protocols. This option enables both WPA and WPA2, along with TKIP and AES. WPAWPA2-PSK (TKIP / AES): Some devices offer – and even recommend – this mixed mode option.If you do, it’ll probably just use AES, as that’s a common sense choice. On some devices, you will just see the option “WPA2” or “WPA2-PSK”. It uses WPA2, the latest Wi-Fi encryption standard and the latest AES encryption protocol. WPA2-PSK (AES): This is the safest option.It is not secure and is only a good idea if you have older devices that cannot connect to a WPA2-PSK (AES) network. WPA2-PSK (TKIP): This uses the modern WPA2 standard with older TKIP encryption.It’s offered as a workaround, but devices that support AES will almost always support WPA2, while devices that require WPA will almost never support AES encryption. WPA-PSK (AES): This uses the original WPA protocol, but replaces TKIP with the more modern AES encryption.It has been replaced by WPA2 and is not secure. WPA-PSK (TKIP): This uses the original version of the WPA protocol (mostly WPA1).It is not much less vulnerable than WEP 64. WEP 128 (risky): This is WEP, but with a larger encryption key size.WEP 64 (risky): The old WEP protocol standard is vulnerable and you really shouldn’t be using it.Seriously, you could get your door broken down by the police. You shouldn’t set up an open Wi-Fi network. Open (risky): Open Wi-Fi networks do not have a passphrase.
RELATED: Why you shouldn’t host an open Wi-Fi network without a password Here are the options that you are likely to see on your router: But all you really need to do is find the most secure option on the list that works with your devices. Wi-Fi security modes explainedĪre you still confused? We are not surprised. This sets it apart from WPA-Enterprise, which uses a RADIUS server to distribute unique keys over larger corporate or government Wi-Fi networks. RELATED: Warning: Encrypted WPA2 Wi-Fi networks are still vulnerable to snoopingĪnd in case you were wondering, the “PSK” in these names means “pre-shared key” – the pre-shared key is usually your encryption password. However, on devices without a visible “TKIP” or “AES” option, WPA2 is generally synonymous with WPA2-AES. Thus, “WPA2” does not always mean WPA2-AES. In such state, devices supporting WPA2 will connect with WPA2 and devices supporting WPA will connect with WPA. While WPA2 is supposed to use AES for optimal security, it can also use TKIP when backward compatibility with legacy devices is needed. But, depending on your router, just choosing WPA2 may not be enough. AES is a new Wi-Fi encryption solution used by the new secure WPA2 standard. The short version is that TKIP is an older encryption standard used by the WPA standard.
RELATED: Brute force attacks explained: how all encryption is vulnerable See also 4 things to keep in mind when buying a Chromebook for Linux