How to View Wi-Fi Encryption Type: A Complete Guide for All Devices

Have you ever wondered how secure your home Wi-Fi network is? Encryption is the first barrier between your data and potential hackers. From outdated WEP, which is hacked in minutes, to the modern WPA3, capable of resisting most attacks - the choice of security protocol directly affects the privacy of your traffic.

In this article, we'll look at how to check the Wi-Fi encryption type on different devices: Windows 10/11 And Android to the router's settings. You'll learn not only where to find the current protocol, but also how to change it if it's outdated. You'll also learn why some networks still use insecure standards and the risks involved.

Why is it important to know your network encryption type?

The type of encryption determines how difficult it is for an attacker to intercept and decrypt data transmitted over your network. Here are three key reasons why this is critical:

  • 🔒 Protection of personal dataPasswords, bank details, and correspondence are all transmitted over Wi-Fi. Weak encryption makes this data interceptable.
  • 📡 Network control: Legacy protocols (eg. WEP) are vulnerable to man-in-the-middle attacks, where a hacker connects to your network without your knowledge.
  • 🚀 Compatibility with new devicesModern gadgets (smartphones, smart speakers, IoT devices) may refuse to connect to networks with outdated security standards.

According to the study Kaspersky By 2023, more than 30% of home networks will still use WPA2-PSK with vulnerable settings, and 5% - none at all WEP, which can be hacked in a few minutes using free tools like Aircrack-ng. In this case, the transition to WPA3 Reduces the risk of a successful attack by 90%.

⚠️ Note: If your router supports WPA3, but it's still selected in the settings WPA2 or mixed mode (WPA2/WPA3), the network automatically becomes vulnerable to attacks on a weaker protocol. Always choose WPA3 only, if your devices support it.

How to find out your Wi-Fi encryption type on Windows 10 and 11

On computers running Windows There are two ways to check a network's security protocol: through a graphical interface and a command line. The first is suitable for beginners, the second is for those who prefer precise data.

Method 1: Via "Network Settings"

This method works on Windows 10 And Windows 11 without additional programs:

  1. Click Win + Ito open "Settings".
  2. Go to Network and Internet → Wi-Fi.
  3. Click on the name of your network (under "Properties").
  4. Scroll down to the "Properties" block - there will be a line Security Type.

Here you will see one of the options:

  • 🔐 WPA3-Personal — the safest today.
  • 🔒 WPA2-Personal - reliable, but becoming outdated.
  • 🚨 WPA-Personal or WEP — unsafe, require urgent replacement.
  • "No" (Open Network) - no encryption, all data is transmitted in clear text.

Method 2: Via the command line (exact data)

If the GUI does not show the encryption type (for example, in Windows 10 older versions), use netsh:

netsh wlan show interfaces

Find the line in the output Security Type (Authentication And Cipher). For example:

Security type: WPA2-Personal

Encryption: CCMP

If the commands output indicates TKIP instead of CCMP, your network uses an outdated encryption method that is vulnerable to attack. CCMP (part of the standard WPA2) is more reliable, but the ideal option is GCMP (For WPA3).

📊 What type of encryption does your network use?
WPA3
WPA2
WPA/WEP
Don't know
Open network

Checking the encryption type on an Android smartphone

On Android There's no built-in way to view the security protocol of a connected network—the system hides this information "to simplify the interface." However, there are workarounds.

Method 1: Wi-Fi Analysis Apps

Install one of these applications (available in Google Play):

  • 📱 WiFi Analyzer (from VREM Software Development) - shows the security type in the list of networks.
  • 🔍 Network Analyzer — displays the protocol in the "Wi-Fi Networks" section.
  • 🛡️ Fing — scans the network and determines the encryption type.

Example of work in WiFi Analyzer:

  1. Open the app and wait for the network scan.
  2. Click on the name of your network.
  3. In the details window, find the line "Security" — the protocol will be indicated there.

Method 2: Via the router menu (if you have access)

If you have administrator rights on your router, the easiest way is to access its web interface (usually at 192.168.0.1 or 192.168.1.1) and look at the security settings in the section Wireless or Wi-FiMore details on this in the next section.

⚠️ Warning: Some Wi-Fi analyzer apps (especially free ones) may require permission to access your location or other data. Check reviews and ratings before installing. Google Play — Attackers often disguise malware as "network analyzers."

How to check the encryption type in your router settings

The most reliable way to find out the security protocol is to look at your router's control panel. The instructions are universal for most models (TP-Link, ASUS, Keenetic, MikroTik etc.), but the paths to the menu may differ slightly.

Step 1: Login to the router's web interface

First, connect to the router via cable or Wi-Fi, then:

  1. Open your browser and enter your router's IP address in the address bar. This is usually:
    • 192.168.0.1 (For D-Link, TP-Link)
    • 192.168.1.1 (For ASUS, Zyxel)
    • 192.168.8.1 (for some models Huawei)
    • my.keenetic.net (For Keenetic)
  • Enter your login and password. By default, this is often admin/admin or admin/password (see sticker on the router).
  • Step 2: Find Wi-Fi security settings

    Depending on the firmware, the path may look like this:

    Manufacturer Path to settings What to look for
    TP-Link Wireless → Wireless Security Field "Version" (WPA3/WPA2) and "Encryption" (AES/TKIP)
    ASUS Wireless → General or Wireless → Security Paragraph "Authentication Method"
    Keenetic Wi-Fi → Hotspot Block "Safety" with protocol selection
    MikroTik Wireless → Security Profiles Parameters "Mode" And "WPA Pre-Shared Key"

    If the settings indicate:

    • 🔒 WPA3-Personal + AES — the optimal choice.
    • 🟡 WPA2-Personal + AES - acceptable, but it is recommended to upgrade to WPA3.
    • 🟠 WPA2-Personal + TKIP/AES — mixed mode, vulnerable to TKIP attacks.
    • WPA-Personal or WEP — Change it immediately!

    ☑️ Router security check

    Completed: 0 / 4

    Comparing Encryption Types: Which One to Choose in 2026

    Not all protocols are created equal. Here's a relevant comparison, taking into account modern threats:

    Protocol Year of release Security level Vulnerabilities Compatibility
    WEP 1997 ❌ Extremely low Hacking in 1-5 minutes, vulnerable to Chopchop And Fragmentation attacks Legacy devices (before 2005)
    WPA 2003 ⚠️ Low Vulnerable to PSK attacks, weak passwords can be cracked in hours Devices from 2003–2010
    WPA2-Personal (AES) 2004 ✅ High Vulnerable to KRACK, but the attack is difficult to implement All devices after 2006
    WPA3-Personal 2018 ✅✅ Maximum Vulnerabilities in earlier versions (Dragonblood), fixed in updates Devices after 2019

    Recommendations for selection:

    • 🏆 WPA3-Personal — the best choice if all your devices were released after 2019.
    • 🥈 WPA2-Personal (AES only) — a compromise for networks with outdated gadgets.
    • 🚫 Avoid WPA/WPA2 Mixed And TKIP - they weaken the network.

    If your router does not support WPA3, consider replacing it. Modern models (for example, ASUS RT-AX88U or TP-Link Archer AX6000) offer not only WPA3, but also protection against DNS attacks, parental controls, and other security features.

    What to do if the encryption type is outdated

    We've detected that your network is using WEP or WPA? Here's the plan of action:

    Step 1: Check if your router has modern protocols

    Go to the manufacturer's website and find your router model. Look for support in the specifications. WPA3 or at least WPA2-AES. For example:

    • TP-Link Archer C7 — supports WPA2, but not WPA3.
    • ASUS RT-AX55 — supports WPA3.
    • Zyxel Keenetic Giga — WPA3 is available after firmware update.

    Step 2: Update your router firmware

    Manufacturers regularly release updates that add support for new protocols. Instructions:

    1. Download the latest firmware from the official website (for example, for Keenetic - With update.keenetic.com).
    2. Go to the router's web interface and find the section System Tools → Firmware Upgrade.
    3. Download the firmware file and wait until it is completed (do not turn off the router!).

    Step 3: Change the encryption type manually

    If the router supports WPA3, but it is not enabled by default:

    1. Go to Wi-Fi settings (see section above).
    2. In the field "Security Mode" or "Authentication" select WPA3-Personal.
    3. In the field "Encryption" install AES (not TKIP!).
    4. Save the settings and reconnect all devices.
    ⚠️ Attention: After changing the protocol with WPA2 on WPA3 Some older devices (such as printers from 2012 or smart light bulbs) may lose connection. Set up a separate guest network for them. WPA2.

    Common mistakes and how to avoid them

    When checking or changing encryption types, users often encounter common issues. Here's how to solve them:

    • 🔄 "I can't connect after changing to WPA3":

      Check if your device supports WPA3. For example, iPhone 6 (2014) is not compatible, but iPhone XR (2018) - yes. Solution: return WPA2 or set up a second network.

    • 🔌 "The router is not saving security settings.":

      Reset the router to factory settings (button Reset for 10 seconds), then try setting it up again. The firmware may be corrupted.

    • 📶 "Network connection drops after firmware update":

      Roll back the firmware to the previous version or perform a reset. Sometimes disabling the function helps. Fast Roaming (if it is in the settings).

    • 🔑 "I forgot my router password and can't access the settings.":

      Reset the router using the button Reset, then use the default login details (usually on the sticker at the bottom).

    Why don't some routers support WPA3?

    WPA3 requires hardware support (the Wi-Fi chip must be able to handle the protocol) SAE instead of PSK). Cheap routers (for example, TP-Link TL-WR840N) are physically unable to work with WPA3, even after a firmware update. In this case, the only solution is to replace the router.

    FAQ: Answers to Frequently Asked Questions

    Is it possible to hack a WPA2-Personal network?

    Theoretically yes, but in practice it's difficult. Attack KRACK (2017) exploits a vulnerability in the protocol, but to implement it, an attacker needs to:

    • Be within range of your network.
    • Have specialized equipment (eg Alfa AWUS036NHA).
    • Know yours SSID and wait until the device connects to the network.

    When using strong password (12+ characters, with letters, numbers and signs) and AES encryption the risk of a successful attack is minimal. However, WPA3 more reliable, since it eliminates the very possibility KRACK.

    What is considered a secure password for Wi-Fi?

    A good Wi-Fi password should:

    • Contain at least 12 characters (optimally 16+).
    • Include uppercase and lowercase letters, numbers And special characters (!@#$% and others).
    • Not to be a dictionary word or a combination of personal data (dates of birth, names).

    Examples:

    • ❌ Weak: 12345678 or ivanov2026.
    • ✅ Reliable: Tr0ub4dour&3-Fox! or C0rrect-H0rse-B4tt3ry.

    Use password managers (eg. Bitwarden or KeePass) for generating and storing complex passwords.

    What is WPS and why should it be disabled?

    WPS (Wi-Fi Protected Setup) — is a feature for "easy connecting" devices to the network without entering a password (for example, using a PIN code or a button on the router). The problem is:

    • An 8-digit PIN code can be guessed in 4–10 hours (brute force attack).
    • Many routers use vulnerable PIN generation algorithms, which speeds up the hack to minutes.
    • Even if you don't use WPS, the feature may be active by default.

    How to disable:

    1. Go to your router settings.
    2. Find the section WPS or Wi-Fi Protected Setup.
    3. Select "Disable" or "Disable".
    Is it possible to use an open network (without password) at home?

    Technically yes, but it's extremely unsafe. On the open network:

    • Everything you transmit (including website passwords) not encrypted and can be intercepted.
    • Any neighbor can connect to your network, consume traffic, and even commit illegal actions in your name.
    • Some internet providers blocking open networks by security policy.

    If you need an open network for guests, set up guest Wi-Fi with separate SSID and a password. In most routers, this is done in the Guest Network.

    How can I check if there are any unauthorized devices connected to my network?

    There are several ways:

    1. Via router:

      Go to the web interface, find the section DHCP Clients, Connected Devices or Wireless ClientsThere will be a list of all connected gadgets with their MAC addresses and IP.

    2. Via mobile apps:

      Use Fing or Network Scanner to scan the network. The apps will display all devices and even try to identify their type (smartphone, laptop, etc.).

    3. Via command line (Windows):

      Run the command:

      arp -a

      It will show all IP and MAC addresses on your local network. Compare them with your devices.

    If you find an unfamiliar device, change your Wi-Fi password and the encryption type on WPA3.