Hi
I have a query on Wireless security that I was hoping someone could help with.
Most technical journals state that for enterprises/business, WLAN security should comprise of a RADIUS server, PEAP encryption etc. WPA2 is reserved for SOHO.
However, what is the reason for this? Is it because maintaining a passphrase in an enterprise is too much overhead, or actually because the AES encryption used with WPA2 is insecure.
We would like to have a Wireless network in part of our office where there are only about 4-5 people. In this case, building a RADIUS server for such a small amount seems overkill when we can use WPA2 *unless* RADIUS was actually more secure.
We were thinking of a combination of WPA2, MAC address filtering and hiding the SSID, although we realise there are relatively straighforward ways to bypass the last two.
Would be interested to know people's thoughts.
Thanks.