I am not sure how widely publicized this is yet, but wanted to make everyone aware and provide a space for discussion.
The Wi-Fi Alliance recently announced its security roadmap which, to summarize, will force member companies to remove TKIP and WEP from Wi-Fi certified products. Aruba will need to comply with these timelines in order to be eligible for future Wi-Fi certificaiton. Here is the timeline:
January 2011: WPA-TKIP as a standalone opmode must be removed. Mixed-mode WPA-AES/TKIP and WPA2-AES/TKIP is still permitted and in fact is required. This applies to APs/controllers.
January 2012: WPA-TKIP as a standalone opmode must be removed from clients.
January 2013: WEP must be removed from APs/controllers
January 2014: WEP must be removed from clients, and WPA Mixed Mode must also be removed. This means no more TKIP period after January 2014.
As most people are aware, TKIP has already been cracked (not catastrophically like WEP, but still cracked) and this is an effort by the Wi-Fi Alliance to get people to stop using security schemes that are known to be broken. Hopefully they have provided sufficient lead time for end users to plan migrations.