IAB Interactive Standardized Equipment List   return to main tree

Search Interactive SEL:




Last Updated: 11/7/2024 10:29:20 AM

Previous SEL Number: 04HW-03-WAP

Description: Wireless Access Point (WAP) for local area networking under 802.11 standards.

ImportantFeatures: 802.11b and 802.11g provide widest compatibility; 802.11n, 802.11ac, 802.11ax (Wi-Fi 6 and 6E), and 802.11be (Wi-Fi 7) provide progrssively higher performance. Some devices may include QoS (Quality of Service) or WMM (Wireless Multi-Media) settings to improve performance. Note that performance increases will only be realized if the client devices are capable of operating under the higher standard.
May be combined with router/switch capability (see 04HW-03-ROUT for details on routers).
MESH networking capability is desirable.
May be integrated with other access modes, such as combined wireless/EVDO cards."

Operating Considerations: Consider power management for mobile use. For example, self-contained battery powered WAP/routers generally have better power management than a PC with attached USB wireless card.
Recommend the following minimum settings (in priority order):
1) Enable strongest available encryption. WPA3 is now available, and should be used where possible. However, some devices may not support WPA3, so care should be taken to ensure that WPA2 remains available. If neither WPA3 nor WPA2 is available, use WPA or WEP. Note that WEP is extremely vulnerable to attacks, but still superior to no encryption at all. It is recommended that WEP-only units be replaced with WPA-capable devices as quickly as possible.
2) Rotate (change) the network encryption key on a regular basis. Recommend monthly.
3) Restrict access to the wireless network to specific hosts by MAC address (a special identifier unique to each network access card).
4) Disable Service Set Identifier (SSID) broadcasting. It is not essential and advertises the existence of the WAP to unauthorized users.

Consider overall performance (Quality of Service) and topology (MESH, Point to Point, ad-hoc) for the served area.

Training Requirements: Core Training: Per Manufacturer's Specifications
Initial Training: Minimal (<1 day)
Sustainment Training: Minimal (<1 day)

Mandatory Standards:

Applicable Standards and References:

IEEE 802.11ak - 2018: IEEE Standard For Information Technology-Telecommunications And Information Exchange Between Systems Local And Metropolitan Area Networks-Specific Requirements Part 11: Wireless LAN Medium Access Control (MAC) And Physical Layer (PHY) Specifications Amendment 4: Enhancements For Transit Links Within Bridged Networks

NIST SP 800-048, Revision 1, Guide to Securing Legacy IEEE 802.11 Wireless Networks, Jul 2008 (WITHDRAWN, copies still available)

NIST SP 800-153, Guidelines for Securing Wireless Local Area Networks (WLANs), Feb 2012

NIST SP 800-171 Rev. 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, May 2024

MSSL:

Forensic Technician

Preventive Rad/Nuc Detection

Law Enforcement: SWAT/Tactical Team

Medical Point of Dispensing