This security policy document outlines the wireless network security measures including WPA2-Enterprise authentication with AES 128-bit encryption. Access points are ceiling mounted and have limited power levels. Guest networks are separated using VLAN tagging. Traffic is prioritized using 802.1p and 802.11e. VPN access is provided through SSL VPN tunnels. The network is managed through an AP controller using HTTPS, SSH, SNMP with RADIUS authentication.