Document Overview (6) Countermeasures Preventative Measures Strong control channel security Prevents impersonation/spoofing for configuration/mgmt/monitoring Strong data channel security Prevents eavesdropping Prevents disassociation of authorized users (DoS) Mutual authentication Prevents AC/WTP impersonation/spoofing Prevents MiM attacks Can be used to limit DoS attacks Data origin authentication Prevents injection, impersonation, spoofing, (dis)association of authorized users Data integrity verification Prevents reflection, modification Anti-replay protection Prevents recording and subsequent replay of valid session Confidentiality Prevents eavesdropping |