Home
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running QNX Neutrino 7.1.
OS Components & Operations
Core Networking Stack User's Guide
This guide introduces you to the QNX Neutrino Core Networking stack and its manager, io-pkt.
Wi-Fi Configuration
Connecting to a Wi-Fi network (Station mode)
For the general case of connecting to a Wi-Fi network, we recommend that you use the wpa_supplicant daemon.
Using WPA/WPA2/WPA3 for authentication and encryption

QNX Momentics IDE User's Guide
This User's Guide describes version 7.1 of the Integrated Development Environment (IDE) that's part of the QNX Momentics tool suite.
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running QNX Neutrino 7.1.
- Quickstart Guide
- OS Components & Operations
  - Adaptive Partitioning User's Guide
  - Boot Optimization Guide
    The Boot Optimization Guide describes techniques you can use to reduce the time from your board's initial power on until you have a fully functional QNX system running on the board.
  - Building Embedded Systems
    The Building Embedded Systems guide is intended for developers who are developing or building BSPs for QNX Neutrino RTOS embedded systems.
  - Core Networking Stack User's Guide
    This guide introduces you to the QNX Neutrino Core Networking stack and its manager, io-pkt.
    - Overview
    - Packet Filtering
    - IP Security and Hardware Encryption
      The io-pkt-v4-hc and io-pkt-v6-hc stack variants include full, built-in support for IPsec.
    - Wi-Fi Configuration
      - Using Wi-Fi with io-pkt
        When you're connecting to a wireless network in the QNX Neutrino RTOS, you must first start the stack io-pkt-* process, then mount the appropriate Wi-Fi driver for the installed hardware.
      - Connecting to a Wi-Fi network (Station mode)
        For the general case of connecting to a Wi-Fi network, we recommend that you use the wpa_supplicant daemon.
        Using no encryption
        Using WEP (Wired Equivalent Privacy) for authentication and encryption
        Using WPA/WPA2/WPA3 for authentication and encryption
        Connecting with WPA/WPA2/WPA3
        The QNX Neutrino Core Networking supports connecting to a Wi-Fi network using the more secure options of WPA, WPA2 (802.11i), or WPA3 protocols.
        Personal-level authentication and Enterprise-level authentication
      - Using a Wireless Access Point (WAP)
        A Wireless Access Point (WAP) is a system that allows wireless clients to access the rest of the network or the Internet.
      - WPA utilities
      - TCP/IP configuration in a Wi-Fi network
    - Transparent Distributed Processing
    - Network Drivers
    - Utilities, Managers, and Configuration Files
      The utilities, drivers, configuration files, and so on listed below are associated with io-pkt.
    - Writing Network Drivers for io-pkt
      This appendix is intended to help you understand and write network drivers for io-pkt.
    - A Hardware-Independent Sample Driver: sam.c
    - Additional information
    - Glossary
  - Customizing a BSP
    While QNX provides Board Support Packages (BSPs) for many common platforms and their individual variants, in some cases, you need a BSP for a board that QNX does not provide. If this is the case, you can modify a QNX BSP or develop your own.
  - Device Publishers Developer's Guide
  - High Availability Framework Developer's Guide
  - High-Performance Networking Stack (io-sock) User's Guide
    This guide contains instructions for implementing and using the QNX Neutrino High-Performance Networking Stack and its manager, io-sock.
  - Instant Device Activation
  - Migrating to QNX SDP 7.1
  - PCI Server User's Guide
  - Persistent Publish/Subscribe Developer's Guide
  - Platform-independent Publish/Subscribe Developer's Guide
    This guide is intended for application developers who want to use the Platform-independent Publish Subscribe (PiPS) framework to exchange information with other applications. First, the overall PiPS design and data-exchange model are explained. Then, tutorials on using PiPS are given. These tutorials cover key tasks such as selecting a publish-subscribe provider to use and writing plugins that read and write custom data types.
  - QDB Developer's Guide
  - QNX Helpers Developer's Guide
    These libraries provide QNX helpers, including helpers that assist with logging, string conversion, and number and type sizes.
  - SMMUMAN User's Guide
  - System Analysis Toolkit (SAT) User's Guide
  - System Architecture
    The System Architecture guide accompanies the QNX Neutrino RTOS and is intended for both application developers and end-users.
  - Technotes
  - User's Guide
    The QNX Neutrino User's Guide is intended for all users of a QNX Neutrino RTOS system, from system administrators to end users.
- Audio & Graphics API
- Multimedia
- Networking Middleware
- Programming
- Sensor Framework
- System Security Guide
  The QNX System Security Guide is intended for both system integrators who are responsible for the security of a QNX Neutrino RTOS system and developers who want to create a QNX Neutrino resource manager free from vulnerabilities.
- Utilities & Libraries
QNX Hypervisor
The QNX Hypervisor allows you to run multiple OSs on a target system so you can separate critical and non-critical functions, support a wide variety of applications, and reduce hardware costs.
QNX Software in the Cloud
QNX Software in the Cloud enables developers to use the QNX software in Amazon Web Services (AWS) and Microsoft Azure (Azure).
QNX Advanced Virtualization Frameworks User's Guide
This User's Guide is aimed at all systems integrators and developers who want to design and build embedded systems using the QNX Advanced Virtualization Frameworks.
Typographical Conventions, Support, and Licensing
This section describes the typographical conventions used throughout the documentation and explains how to obtain technical support.

Using WPA/WPA2/WPA3 for authentication and encryption

The original security mechanism of the IEEE 802.11 standard wasn't designed to be strong and has proven to be insufficient for most networks that require some kind of security. Originally, the 802.11 standard defined a Wired Equivalent Privacy (WEP) algorithm for protecting wireless networks. WEP uses RC4 with 40-bit keys, a 24-bit initialization vector (IV), and CRC32 to protect against packet forgery. All these choices have proven to be insufficient:

The key space is too small to guard against current attacks.
RC4 key scheduling is insufficient (the beginning of the pseudo-random stream should be skipped).
The IV space is too small, and IV reuse makes attacks easier.
There's no replay protection.
Non-keyed authentication doesn't protect against bit-flipping packet data.

Wi-Fi Protected Access (WPA) is an intermediate solution for these security issues. It uses the Temporal Key Integrity Protocol (TKIP) to replace WEP. TKIP is a compromise on strong security, and can be used with existing hardware. It still uses RC4 for the encryption as WEP does, but with per-packet RC4 keys. In addition, it implements replay protection and a keyed packet-authentication mechanism.

Keys can be managed using two different mechanisms; WPA can use either of the following:

WPA-Enterprise: An external authentication server (e.g. RADIUS) and EAP, just as IEEE 802.1X is using.
WPA-Personal: Pre-shared keys without the need for additional servers.

Both mechanisms generate a master session key for the Authenticator (AP) and Supplicant (client station).

WPA implements a new key handshake (4-Way Handshake and Group Key Handshake) for generating and exchanging data encryption keys between the Authenticator and Supplicant. This handshake is also used to verify that both Authenticator and Supplicant know the master session key. These handshakes are identical regardless of the selected key management mechanism (only the method for generating master session key changes).

Page updated: March 12, 2026