WLAN solutions for HP enterprise notebooks and Tablet
PCs
HP Compaq nc4000, nc4010, nc6000, nc8000, nw8000, TC1100
Executive summary................................................................................................ ..........................3
Introduction....................................................................................................................................3
Enterprise WLAN Requirements.........................................................................................................3
Security.....................................................................................................................................3
Manageability............................................................................................................................4
Performance...............................................................................................................................5
HP WLAN Adapters........................................................................................................................ 5
HP WLAN Client Software................................................................................................................7
Selecting the right WLAN Solution...................................................................................................10
Emerging WLAN standards............................................................................................................11
Conclusion ..................................................................................................................................12
2
Executive summary
HP has a comprehensive offering of mobile wireless local area network (WLAN) solutions that address enterprise
business requirements for security, performance, and manageability. This offering has been recently
strengthened with the introduction of the Intel® Pro/Wireless 2200BG WLAN adapter and a new release of the
Atheros Client Utility, version 3.1. This white paper includes:
• An overview of primary enterprise WLAN requirements
• A comparison of HP WLAN adapters
• A comparison of HP WLAN client software features
• Guidelines for choosing a WLAN solution
• A preview of emerging WLAN standards
Introduction
Since early 2003 there has been explosive growth in the sales of mobile computers with integrated WLAN.
Adoption of WLAN by enterprise businesses, initially held back by concerns over security and manageability, is
growing. These concerns have been—and continue to be—addressed by HP and our WLAN technology
partners.
HP offers a selection of standards-based WLAN solutions for enterprise notebooks and Tablet PCs, including
WLAN adapters based on technology from Intel and Atheros, and software that supports a comprehensive set of
enterprise features such as Cisco Lightweight Extensible Authentication Protocol (LEAP) and profile import/export.
All HP WLAN solutions are Wi-Fi Certified to ensure the greatest level of interoperability with other WLAN
products.
HP WLAN solutions allow enterprise businesses to unlock the productivity and convenience benefits derived from
a secure, high performance, manageable wireless network.
Enterprise WLAN requirements
Security
Security is a fundamental concern for enterprise IT managers. WLAN is a particular concern, since an intruder
does not need physical access to the network to attempt to breach it. Aside from physical access, however, the
security challenges for a WLAN are similar to those of a wired LAN:
• Authentication – How to ensure that only authorized users can access the enterprise LAN?
• Data protection and integrity – How to ensure that data on the network are not compromised?
• Manageability – How to make network security more manageable?
HP addresses the need for WLAN authentication through support for 802.1x EAPs. The IEEE 802.1x standard
and EAP protocols define a framework for authenticating users on a network, as well as a mechanism for
dynamically changing and distributing keys. There are several 802.1x EAP types supporting a variety of
authentication methods, including passwords and digital certificates. 802.1x is a proven, scalable
authentication method that is widely deployed.
Data on the WLAN is protected by encryption. HP WLAN solutions support all commonly deployed encryption
standards, including Wired Equivalent Privacy (WEP), Wi-Fi Protected Access (WPA), and the Advanced
Encryption Standard (AES)1.
1
The HP W400 and W500 WLANs support AES now; other HP WLANs will be upgraded to AES in future driver releases. AES support will be standard for all
HP WLANs 2005 and later.
3
Defined as part of the IEEE 802.11 family of WLAN specifications, WEP security was intended to make wireless
networks as secure as wired LANs. However, with the symmetrical RC4 stream cipher2and static 64- or 128-bit
key, WEP security was insufficient for some environments.
WPA was introduced in mid 2003 as an immediately-available, software-upgradable enhancement for WEP.
WPA enhanced WEP encryption through the addition of Temporal Key Integrity Protocol (TKIP), providing perpacket key mixing, Message Integrity Check (MIC), extended initialization vector (IV) with sequencing rules, and
a re-keying mechanism. WPA is significantly more secure than WEP3, and has received acceptance from most
enterprise IT managers.
AES is a block cipher using the Rijndael encryption algorithm on 128-bit (or 192- or 256-bit) blocks of data;
block lengths and key lengths are variable. (Block ciphers are typically more complex than stream ciphers
and thus harder to crack. The strength of AES security is validated by its adoption by the U.S. government
and military.) AES is a key component of the IEEE 802.11i specification, the most recent WLAN security
standard that was ratified in June 2004 by IEEE Task Group i (TGi) working group members. HP’s current
WLANs include AES support, and will support 802.11i and the corresponding Wi-Fi interoperability test
WPA2 through a future software upgrades.
Manageability
For large WLAN deployments, the effort required to implement and maintain WLAN security measures can
be significant. Manageability features of HP WLAN solutions include:
Restricted user rights
User rights to certain settings may be restricted to prevent modifying WLAN profiles (for example, security
keys), and in some cases from creating new profiles.
Easy distribution of encryption keys and user profiles
The management and distribution of encryption keys and user profiles can be cumbersome and potentially
insecure. Appropriate WLAN management solutions—such as 802.1x and the ability to import and export
WLAN profiles—can be used to distribute keys and profiles, minimizing the burden on IT staff.
User credential management
HP addresses the need for the security and simplified management of user credentials by allowing
Windows® Domain credentials to be re-used for LEAP authentication. Security can also be further enhanced
by the HP ProtectTools Security Manager—a single client console application that unifies security capabilities
of HP client PCs under a common architecture and single user interface. Today a range of features is being
delivered that builds on underlying hardware security building block,s such as embedded security chips
designed to the Trusted Computing Group (TCG) standard and Smart Card technology. Collectively, these
features are addressing business customer needs for better protection against unauthorized PC access, as
well as stronger protection for sensitive data stored locally or accessed over a network.
Managed product lifecycles and software upgrades
Stable product configurations over a long purchase period ease IT management by minimizing technology
transitions. WLAN driver and client software that are compatible across multiple notebooks and WLAN
adapters, and are backwards compatible with previous revisions, simplify maintenance of the WLAN installed
base.
2
For more information, visit www.rsasecurity.oom
3
Wi-Fi Protected Access Whitepaper, available at www.wi-fi.org
4
Performance
HP works to optimize WLAN performance at each step of the product development process, starting with the
selection of the WLAN technology provider. By partnering with companies like Intel and Atheros, jointly
designing and testing standards-based solutions during the development process, HP is able to provide leading
performance wireless LAN adapters at a competitive cost.
Starting with a high performance WLAN adapter, however, is not enough. The adapter must be integrated into
the notebook with a complementary antenna for maximum range and throughput. HP places the WLAN
antennas in the display enclosure, where they are less susceptible to interference by electrical signals in the base
of the notebook, less susceptible to signal absorption and antenna de-tuning by the proximity of the user; and,
by being elevated, have better ‘visibility’ of the WLAN signal. This placement of high-efficiency antennas
minimizes signal loss, which helps users stay connected over longer distances and helps maximize throughput at
all points in the network coverage area. The HP antennas are “dual-band”—capable of supporting wireless
LAN technologies that use either the 5 GHz or 2.4 GHz frequency bands. This allows customers to benefit from
the higher network capacity of 802.11a while remaining compatible with 802.11b and 802.11g networks.
Finally, HP employs an omni-directional, diversity antennae approach—two antennas in every notebook that
work independently—to help ensure the best possible performance, regardless of how the notebook is oriented.
Diversity design improves indoor performance by minimizing the radio frequency (RF) reflection effects
(“multipath”), which can cause localized signal weaknesses at either of the antennae.
The final guarantee of WLAN performance is provided by HP’s test and qualification process. First the
design is validated and tuned in the laboratory, and then it is tested in real world conditions. An in-factory
verification of WLAN performance confirms that each WLAN notebook meets HP’s exacting standards.
Cisco
Any discussion of network security and manageability would be incomplete without addressing the solutions
offered by Cisco Systems, Inc. Cisco has met enterprise network requirements by offering innovative products
that address needs for security and manageability, typically by combining standards-based and Ciscoproprietary technologies.
HP is committed to offering business notebooks that customers can deploy in a Cisco wireless LAN environment.
Therefore, all HP business notebook WLANs are Cisco compatible, as verified through the Cisco Compatible
Extensions Program. The Cisco Compatible Extensions Program for WLAN devices assures compatibility
between Cisco Aironet WLAN products and HP notebooks through extensive independent testing. Cisco
Compatible HP notebooks interoperate with Cisco Aironet Wireless LAN products and support proprietary Cisco
features that enhance security and manageability.
HP WLAN adapters
HP notebooks and tablet PCs for enterprise business feature a choice of WLAN adapters. Table 1 compares
selected characteristics of the adapters, and Table 2 shows availability by product.
Table 1 Feature comparison, WLAN adapters
Feature
Intel Pro/Wireless
2100
Intel Pro/Wireless
2200BG
HP W400 802.11b/g
WLAN
HP W500
802.11a/b/g WLAN
Wireless LAN
Standards
Frequency Band
IEEE 802.11a
IEEE 802.11b
IEEE 802.11b
2.4 GHz 2.4 GHz 2.4 GHz 2.4 GHz, 5 GHz
IEEE 802.11g
IEEE 802.11b
IEEE 802.11g
IEEE 802.11b
IEEE 802.11g
5
Data Rates (Mbps)
802.11b: 1, 2, 5.5,
11
802.11b: 1, 2, 5.5,
11
802.11g: 6, 9, 12,18,
24, 36, 48, 54
802.11b: 1, 2, 5.5,
11
802.11g: 6, 9, 12,18,
24, 36, 48, 54
802.11b: 1, 2, 5.5,
11
802.11a/g: 6, 9,
12,18, 24, 36, 48,
54
Modulation
HW Accelerated
AES
Output Power (for
CKK)
Output Power (for
OFDM; power
varies by data rate)
Power
Consumption(max),
Transmit
Power Consumption
(max), Receive
Power Consumption
(nominal), Idle
mode
Power
Consumption, Sleep
mode
Power Management
Direct Sequence
Direct Sequence
Spread Spectrum
DBPSK, DQPSK, CCK
Spread Spectrum
DBPSK, DQPSK, CCK,
OFDM
No Yes
4
Direct Sequence
Spread Spectrum
DBPSK, DQPSK, CCK,
OFDM
Direct Sequence
Spread Spectrum
DBPSK, DQPSK, CCK,
OFDM
Yes Yes
16 dBM 16 +/- 2 dBM 17 dBM 17 dBM
N/A 11 +6/-1 dBM 15 dBM 15 dBM
2.0 W 1.9 W 2.0 W 2.0 W
1.5 W 1.4 W 1.5 W 1.5 W
90 mW 75 mW 180 mW 180 mW
50 mW 50 mW 20 mW 20 mW
ACPI compliant power
management
802.11 compliant
power saving mode
ACPI compliant power
management
802.11 compliant
power saving mode
ACPI compliant power
management
802.11 compliant
power saving mode
ACPI compliant power
management
802.11 compliant
power saving mode
54 Mbps: -72 dBm, 11
Receiver Sensitivity
11 Mbps: -82 dBm , 1
Mbps: -89 dBm
Mbps: -84 dBm , 1
Mbps: -94 dBm
Range, Outdoor
(typical) 802.11a
N/A N/A N/A 500 ft.
Range, Indoor
(typical) 802.11a
N/A N/A N/A 150 ft.
Range, Outdoor
(typical) 802.11b
1200 ft.
1200 ft.
Range, Indoor
(typical) 802.11b
300 ft.
300 ft.
Range, Outdoor
(typical) 802.11g
N/A 1200 ft. 1000 ft. 1000 ft.
Range, Indoor
(typical) 802.11g
Form Factor
Weight
4
AES support for Intel 2200BG will be activated by a future driver release.
N/A 300 ft. 200 ft. 300 ft.
MiniPCI Type IIIB MiniPCI Type IIIB MiniPCI Type IIIA MiniPCI Type IIIA
0.026 lb/11.75 gm
(max)
0.026 lb/11.75 gm
(max)
54 Mbps: -70 dBm,1
Mbps: -90 dBm
54 Mbps: -70 dBm,1
Mbps: -90 dBm
1200 ft. 1200 ft.
300 ft. 300 ft.
0.035 lb/16 gm (max) 0.035 lb/16 gm (max)
6
Dimensions
0.20 x 1.75 x 2.34"
(4.9 x 44.6 x 59.8
mm)
0.20 x 1.75 x 2.34"
(4.9 x 44.6 x 59.8
mm)
0.19 x 2.00 x 2.35"
(4.8 x 50.95 x 59.75
mm)
0.19 x 2.00 x 2.35"
(4.8 x 50.95 x 59.75
mm)
Voltage, Operating
Temperature,
Operating
Temperature, Nonoperating
Humidity,
Operating
Humidity, Nonoperating
Altitude, Operating
Altitude, Non-
operating
3.3v 3.3v 3.3v 3.3v
32 to 158 F/0 to 70 C32 to 158 F/0 to 70 C32 to 122 F/0 to 50 C32 to 122 F/0 to 50
-40 to 176 F/-40 to
80 C
10 to 90% (noncondensing)
5 to 95% (noncondensing)
0 to 10,000 ft/3,048 m0 to 10,000 ft/3,048 m0 to 15,000 ft/4,572 m0 to 15,000 ft/4,572
0 to 50,000
ft/15,240 m
-40 to 176 F/-40 to
80 C
10 to 90% (non-
condensing)
5 to 95% (non-
condensing)
0 to 50,000
ft/15,240 m
Table 2: WLAN adapter availability by product
HP Notebook Intel PRO/
Wireless 2100
HP Compaq Business Notebook nc4000
No No Yes Yes
-14 to 158 F/-10 to
70 C
10 to 90% (noncondensing)
5 to 95% (noncondensing)
0 to 40,000
ft/12,192 m
Intel PRO/
Wireless
2200BG
HP
WLAN
W400
C
-14 to 158 F/-10 to
70 C
10 to 90% (noncondensing)
5 to 95% (noncondensing)
m
0 to 40,000
ft/12,192 m
HP
WLAN
W500
HP Compaq Business Notebook nc4010
HP Compaq Business Notebook nc6000
HP Compaq Business Notebook nc8000
HP Compaq Mobile Workstation nw8000
HP Compaq Tablet PC TC1100
Yes Yes Yes Yes
Yes Yes Yes Yes
Yes Yes Yes Yes
Yes Yes Yes Yes
Yes Yes No Yes
HP WLAN Client Software
The previous section summarized the WLAN adapters and their availability on HP notebooks and Tablet PCs for
enterprise. This section summarizes the features of the WLAN Client software that are supported by the
adapters.
WLAN Client Software is used to manage the configuration of the WLAN adapter, create and manage network
profiles, provide connection status and diagnostic information, and implement security features that help enable
a secure connection between the client and the WLAN infrastructure. These security tasks include entering
encryption keys and configuring and executing 802.1x authentication)5. Also, the WLAN client software often
implements additional features proprietary to the WLAN manufacturer.
All WLAN adapters used in HP notebooks support the Microsoft Windows XP Wireless Network Connection
Manager that is native to the operating system, as well as client software provided by the WLAN manufacturer.
For the HP WLAN W400 and W500, the manufacturer’s software is the Atheros Client Utility. For the Intel
5
The WLAN software is sometimes referred to as the supplicant, but actually the security software supplicant is only the component of the client software
application that requests authentication from the network’s authentication server.
7
Pro/Wireless wireless network adapters, the manufacturer’s software is the Intel ProSet Network Configuration
Utility.
The following table summarizes the primary features of the client software supported by the previously listed HP Compaq ncand tc-series products.
Table 3: Client software features supported by nc- and TC-series products
WLAN Vendor SW Rev.
HP Rev. Control (as on Web)
WLAN HW Support
OS Support
Availability
WEP (64/128)
WPA
WPA2/802.11i6
Cisco Compatible Extensions v1
Cisco Compatible Extensions v2
Auto Profile Switching
Atheros
(Atheros Client Utility)
Microsoft Windows XP
Wireless Zero
Intel
ProSet Network Configuration Utility
Configuration Utility
2.4 3.1 XP SP1 XP SP2 V7.1.2 V7.1.3 V8.0
2.00E
12 Mar 04
W400,
W500
3.00A
20 April 04
W400,
W500
N/A N/A
ALL ALL P/W
2100
P/W
2100
P/W
2200BG
2K, XP 2K, XP 2K, XP 2K, XP 2K, XP 2K, XP 2K, XP
Mar 04 May 04 Now Oct 04 Now Aug 04 Feb 04
ü ü ü ü ü ü ü
ü ü ü ü ü ü ü
ü ü ü ü ü
ü
ü ü ü ü ü ü
Single Sign on (for LEAP)
Profile Import/Export
ü ü ü
ü ü ü ü
802.1x type support
LEAP
EAP-TLS
EAP-TTLS
PEAP-GTC (Cisco)
PEAP-MSCHAPv2 (Microsoft)
6
802.11i ratifed by the IEEE June, 2004. WPA2 interoperability testing expected to start in the second half of 2004.
ü ü ü ü ü
ü ü ü ü ü ü ü
ü ü ü ü
ü ü ü ü
ü ü ü ü ü ü ü
8
Several features in Table 3, above, have particular value in the enterprise environment. The following table
highlights the benefits of these selected features.
Table 4: Selected feature benefits for the enterprise environment
Feature Benefit
Cisco Compatible Extensions Support
Single Sign-on for LEAP
Profile import/export
Automatic Profile switching
• Assurance of tested compatibility with Cisco Aironet infrastructure products.
• Support for the latest industry security standards plus selected Cisco
proprietary features
• Simplifies IT management by allowing windows domain login credentials to
be re-used for LEAP authentication
• Avoids security risk with local storage of LEAP credentials
• Allows IT administrators to create a single profile and distribute and
implement it in an enterprise environment, reducing support time and errors
users make when managing their own profiles.
• Convenience, avoiding the need to manually change profiles when moving
from one network to another.
9
Selecting the right WLAN solution
Because HP offers a selection of standards-based solutions WLAN solutions as described above, customers
can choose the solution that best meets their needs. To assist in this selection, HP offers the following
recommendations:
Table 5: HP recommended WLAN solutions
If your environment … Recommended Supplicants Recommended WLAN adapters
Uses predominantly Microsoft server
infrastructure
• Microsoft server products
manage authentication
• Authentication based on
Microsoft EAP-TLS or Microsoft
PEAP
• Microsoft Windows XP Wireless
Network Connection Manager
• HP WLAN W400, W500
• Intel Pro/Wireless 2100,
2200BG
Uses predominantly Cisco Aironet
infrastructure
Is standardized on Intel technology
Requires 802.11a support
Requires LEAP single sign-on support
• Atheros Client Utility
• Intel ProSet Network
Configuration Utility
• Intel ProSet Network
Configuration Utility
• Microsoft Windows XP Wireless
Network Connection Manager
• Atheros Client Utility
• Microsoft Windows XP Wireless
Network Connection Manager
•
• Atheros Client Utility
• Intel ProSet Network
Configuration Utility
• HP WLAN W400, W500
• Intel Pro/Wireless 2100,
2200BG
• Intel Pro/Wireless 2100,
2200BG
• HP WLAN W500
•
• HP WLAN W400, W500
• Intel Pro/Wireless 2100,
2200BG
10
Emerging WLAN standards
Three significant WLAN standards emerging that may offer significant benefits to enterprise business in the
next 1 to 2 years are described in the following table.
Table 5: HP recommended WLAN solutions
Standard Description Ratification Benefit
802.11e
Quality of Service. Enhances the current 802.11
MAC to expand support for applications with
Quality of Service requirements, and in the
capabilities and efficiency of the protocol.
Examples of QoS applications include media
streaming and Voice over IP. 802.11e will define
managed classes of service for data, voice, and
video applications.
Oct 04 Improved
performance for
delay -sensitive
applications like
VoIP and
streaming.
802.11i
802.11n
Enhanced Security. 802.11i includes all the
security features of 802.1x and WPA plus AES.
802.11i is applicable to all the physical layer
standards (802.11a, 802.11b, 802.11g); the
associated WiFi interoperability test is called
WPA2.
High Throughput WLAN. 802.11n specifies a new
physical layer protocol for an 802.11 network with
throughput up to 100 Mbps and modes compatible
with 802.11g and 802.11a.
June 2004 very strong WLAN
security.
Note: Current HP
WLAN Solutions
will support
802.11i & WPA2
via a free software
upgrade in 2H04.
late 2005 or early
2006
Higher throughput
and network
performance.
Modes that are
backward
compatible with
802.11g and
802.11a.
11
Conclusion
©2004 Hewlett
-
Packard Development Company, L.P. The information
HP enterprise notebook WLAN solutions address the primary concerns of enterprise business:
• Security
– Support for all common encryption methods, including WEP, WPA, and AES. Current WLAN solutions
will support the emerging security standard 802.11i by software upgrade in the second half of 2004.
– 802.1x provides strong authentication using a highly-manageable industry standard. The HP advantage
lies in broad support for all major authentication types, giving enterprise customers the freedom to select
an authentication method that is appropriate for their unique environments and security risk assessments.
• Manageability
– Support for LEAP Single Sign-on, profile import/export, and restricted user rights.
– 802.1x to support dynamic key exchange.
– Managed product lifecycles and software upgrades.
• Performance
– Partnering with leading WLAN-technology providers.
– HP notebooks feature display mounted, dual-band, diversity antenna design enabling users to stay
connected over longer distances and to maximize throughput at all points in the network coverage area.
– HP rigorous testing and qualification of WLAN solutions from prototype through production.
• Cisco interoperability and feature support
– The Cisco Compatible Extensions program allows HP to incorporate Cisco security and manageability
enhancements.
– The HP advantage lies in the strength of the strategic alliance with Cisco – the HP endorsement and leading
support for the Cisco Compatible Extensions program translates into tangible benefits for enterprise
customers.
contained herein is subject to change without notice. The only warranties for
HP products and services are set forth in the express warranty statements
accompanying such products and services. Nothing herein should be construed
as constituting an additional warranty. HP shall not be liable for technical or
editorial errors or omissions contained herein.
Microsoft and Windows are either registered trademarks or trademarks of
Microsoft Corporation in the United States and/or other countries. Intel is a
trademark or registered trademark of Intel Corporation or its subsidiaries in the
United States and other countries.
Printed in the U.S.A.
5982-7611EN, 7/2004
12
Loading...