I am trying to get a understanding of the newer security/encryption methods related to wifi and I have a few questions that I would love if someone could answer for me. Keep in mind I am mainly thinking of these questions in relation to public access hotspots.

1. Am I correct that any wireless encryption method is just to encrypt the data while it travels from the client to the AP? Obviously there would be no encryption past the AP on the internet since there would be nothing on the other end to decrypt.

2. With any of the newer encryption methods(ie WPA, WPA2, etc.) or known future methods, does it always require end users to make changes to their client setting to be able to take advantage of the encryption? I'm thinking about in hotspot situations.......will users always have to know how to make these changes or are any of them more seemless from their standpoint?

3. Assuming that question number 2 is "Yes" users will always have to make client side setting changes to use wireless encryption.........is there any hardware that could allow user to connect either with or without encryption? For example could an AP let an uneducated user just hop on unencrypted while another user beside them(who knows how to set up his client encryption settings) connects encrypted?

Thanks for everyones help so far, just trying to learn the ropes.

1. You are correct

2. Yes

3. Not feasible at a Hotspot

What we suggest to hotpsot users concerned about security is to use a service like hotspotvpn.com which encrypts all network traffic between the client, AP, and beyond the AP. Last time I checked, it was about $10 a month for the service. The user will need to load a client application and once installed, all traffic is encrypted.

Greg