What is the difference between TKIP and CCMP?
TKIP is designed as a temporary security protocol for a wireless network in IEEE 802.11. It was deprecated in 2012. CCMP is designed as an encryption protocol for the wireless network the newer IEEE 802.11 device.
TKIP and CCMP both support message integrity and data confidentiality services. But there are different technicals for each system. While TKIP uses a Message Integrity Code (MIC) to 802.11 MAC frame after data field for message integrity, CCMP uses the cipher block chaining message authentication code (CBC-MAC).
For data confidentiality, both systems use different technic too. TKIP uses RC4 for encryption of packet. CCMP uses CTR based on AES processing.
TKIP uses three security features
- Uses key mixing that combines the secret root key with the initialization vector.
- Use a sequence counter to protect against replay attacks.
- 64-bit Message Integrity Check (MIC) for the integrity of data.
CCMP uses five security features
- MAC header (Destination and source addresses of the packet)
- CCMP Header (packet number, Ext IV, and key ID), those value uses for encryption data and MIC.
- Data Unit.
- Message Integrity Check(MIC) for the integrity of data.
- Frame check sequence (FCS) for checking and correction data