Main Menu

Wireless Device Encryption

Directive
All wireless devices connected to the Shepherd University network must be capable of connection via Wi-Fi Protected Access WPA2 Enterprise, not Personal encryption.

Rationale
As noted above, information security is only as strong as its weakest link. The lack of a physical connection between a computer and other network resources presents a particular challenge, as anyone with the proper equipment can easily eavesdrop on the network traffic flowing between the wireless computer (or smart phone) and the access point. Therefore all data transmitted wirelessly must be encrypted.

Wireless network connections encoded via WEP (Wired Equivalent for Privacy) are weakly encrypted and should not be considered secure. The same is true for any wireless connections not using an encryption method. The presence of a proxy server using SSL (such as a hot-spot captive portal page) is not an adequate substitute. As of March 2010, WPA2-Enterprise encrypted traffic is adequately secure.