Wireless Safety - Illinois
RISKY BUSINESS by Julie Bos
Are Your Customers' Wireless Networks Safe?
Because wireless LANs are vulnerable to eavesdropping and unauthorized access, proper planning and safety precautions are essential for users who want to avoid catastrophe. Without proper security, remote users are in a precarious position - and corporate networks are left without a safety net.
By understanding those dangers, however, you can offer cost-effective solutions that reduce a customer's chance of security breaches. Here's an overview of the most common wireless security risks, plus solutions, you can recommend.
Traffic Interception and Hijacking
Using sophisticated sniffer programs, which seek and capture the first part of data transmissions, attackers can view user names and passwords then break in to wireless traffic. Once a hacker has access, he or she can also add false traffic, essentially hijacking the data transmission.
An attacker can also trick corporate networks into routing sensitive data through their wireless devices, thus exposing data never intended for outsiders. This technique is called "arpspoofing."
The most effective method of blocking these types of intrusions is to employ the use of a VPN. This adds encryption and authentication capabilities, thus protecting data transmissions on all fronts. VPNs not only give remote users access to the network, they give the network ultimate control over what information is exposed.
Access Point Misconfiguration
When manufactured, access points are typically configured with the least security possible. The IT administrator is responsible for configuring the access points for higher security. Unless this is done, the factory-configured access points will remain extremely vulnerable.
One way to avoid vulnerability is to create unique Server Set Identifiers (SSIDs) for each access point, so only those users who know the SSID can communicate with the network.
Most manufacturers already configure their access points with a common default SSID. For example, all Cisco access points are set to "tsunami." However, these default SSIDs are widely known, and therefore need to be changed upon installation to make users' networks more difficult to detect. As long as the SSID is not broadcast (and thus exposed to potential attackers), it can help increase a wireless network's security.
Users should also engage their access points' built-in Wired Equivalent Privacy (WEP) feature. By specifying 128-bit encryption, users can employ WEP to discourage the attempts of sniffers.
Insertion Attacks
Hackers also break into WLANs by simply connecting their wireless devices to an access point without authorization. Because wireless connections are invisible, these rogue connections aren't easily spotted and can exist quietly for months.
By configuring access points properly and using simple mechanisms, such as verification of user passwords and MAC addresses, companies can help prevent unauthorized access to their internal network by would-be intruders.
Insist On Security Solutions
With the widespread adoption of wireless networks, purchasing a security solution is a must. Cost-effective recommendations include:
· Firewalls | Limit who gains access to the wireless network
· VPNs | Employ advanced encryption and authentication capabilities
· Intrusion detection software | Identify and minimize attacks from intruders and viruses
· Desktop scanning programs | Identify security misconfigurations on wireless devices
End-Users Tips On Configuring Access Points
Many security risks can be avoided if a company sets up their access points properly:
· Configure their access points to verify MAC addresses and user passwords before allowing transmissions.
· Change SSID settings upon installation and use long, non-meaningful strings of characters.
· Activate the built-in WEP encryption capabilities.
· Eliminate and/or limit SSID broadcasting.
 Spyware Removal Antivirus Protection Wireless Cameras Home Office Setup Data Protection Small Business Support Email Configuration Web Hosting Intel Server's Intel PC's Web Site Update Remote Backup Wireless Site Survey
Allow Us To Contribute to The Success of Your Company!
|
