Just dreaming: different WEP keys per client

Denis Vlasenko vda
Sat Apr 24 07:50:05 PDT 2004

On Friday 23 April 2004 09:42, Konstantin Klubnichkin wrote:
> Hello people!
> I was dreaming last evening about per client WEP encryption.
> As far as I understand (please correct me) there are 2 ways to
> encrypt/decrypt data - in firmware and in hostapd.

Since WEP is broken, it's better to use something else.
IPSec maybe.

> In case we use second way it's may be interesting to implement such
> feature.
> I thought about it in a scope of public WiFi cafe. When client gets
> (buys) account information (login/password) and wants to encrypt
> his/her traffic we also give him WEP key. The problem is - once you
> know WEP key of one client - you know WEP key for whole network.
> It's allmost impossible to force client to use WPA-PSK because of
> complexity of the process. Moreover once "bad guy" gets passphrase he
> can decrypt all WiFi traffic in our network.

More information about the Hostap mailing list