WEP

Wired Equivalent Privacy. IEEE80211 standard defined this algorithm to protect wireless networks. But this protocol was proved to be insufficient to provide enough security.

TKIP

Temporal Key Integrity Protocol.

WPA

Wi-Fi Protected Access. This is a subset of security enhancements was defined by Wi-Fi Alliance based on IEEE 802.11i draft 3.0 as WEP proved to be insufficient. It replaces WEP Protocol with TKIP protocol.

WPA2

Subset of security enhancements that is based on completed IEEE 802.11i standard is called WPA2. Also known as RSN/IEEE 802.11i. This has support for more robust encryption algorithm CCMP to replace TKIP. It also has support for PMKSA caching. WPA2 authentication are of two types. WPA2-Personal and WPA2-Enterprise.

EAP

Extensible Authentication Protocol.

EAPOL

EAP over LAN.

WPA2-Personal

Also known as WPA2-PSK. PSK for Pre Shared Key. It requires a single password to access Wi-Fi.

WPA2-Enterprise

WPA2 can use the external authentication server (ex: RADIUS) and EAP to authenticate user.

RSA Message Digest Algorithm MD5

PMK

Pairwise Master Key

PMKSA

PMK Securtiy Association. This is the collection of information (Station MAC Address, AP MAC Address, PMK and the label “PMK Name”) used to derive PMKID.

PMKID = HMAC-SHA1-128(PMK, "PMK Name" | MAC_AP | MAC_STA)