Manualshelf

User's Manual

ManualsBrandsSchweitzer Engineering Laboratories ManualsElectronicsSEL-3022
81828384858687888990
Table Of Contents
SEL-3022 Transceiver Instruction Manual Date Code 20050615
Wireless Operator Interface Security
Wireless Interface Security Overview
C.2
Cryptographic Manual—Do Not Copy
Wireless Interface Security Overview
The SEL-3022 wireless operator interface and SEL-5809 Settings Software implement
a two-part encryption system consisting of IEEE 802.11 WEP and the SEL Security
Application. WEP is an encryption standard defined by the 802.11 specification and is
available on most 802.11-enabled devices. The SEL Security Application consists of
National Institute of Standards and Technology (NIST)-approved encryption and
authentication algorithms that are cryptographically much stronger than WEP.
Together, these two, independent security features provide a secure communications
link between the SEL-3022 and the operator PC or Personal Data Assistant (PDA).
Strengths of the WEP and SEL Security Application combination are as follows:
A 104-bit WEP encryption function keeps out all but the most
determined attackers. The following pages discuss the relative
security of the WEP function.
The SEL Security Application employs 128-bit AES encryption and
128-bit HMAC SHA-1 authentication. This application provides
cryptographic security at greater than 128 bits of cryptographic key
strength, using only FIPS 140-2 compliant cryptographic algorithms.
The following pages discuss the SEL Security Application.
Figure C.1 shows the relationship between WEP and the SEL Security Application.
Figure C.1 Two Independent Layers of Cryptographic
Security Protect the SEL-3022 Wireless Operator Interface
The decryption process of the SEL-3022 wireless interface consists of multiple
cryptographic verifications. When the SEL-3022 wireless module receives a correctly
addressed packet, the wireless module WEP decrypts the packet. The wireless module
discards any packets that do not decrypt successfully. If the packets do WEP decrypt
successfully, the wireless module passes resulting data frames to the SEL Security
PC With SEL-5809 Settings Software or SEL-3022
SEL Security Application
AES
Encryption
Key
WEP
Encryption
Key
802.11b Wireless Module
Secured
Data
Data
HMAC SHA-1
Authentication
and
AES Encryption
802.11b
Radio
WEP
Encryptor
HMAC
Authentication
Key
Preliminary Copy