Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : Wi-Fi Security : 802.11 Security Issues

802.11 Security Issues

May 17,2010 by alperen

small font medium font large font
image


The most prevalent security issues having serious implications for crossplatform
wireless computing involve key problems that have universal
significance.
There is no per-packet authentication method per se that allows you
to determine the source of a specific packet coming into your system.
This leaves 802.11 vulnerable to “disassociation attacks” that force users
to disconnect from the WLAN at any given time.
802.11 has neither a specified method of user identification nor of
authentication. Without any central method of authentication, authorization,
or accounting support, 802.11 is vulnerable to so many attacks
that it leaves the system completely vulnerable.
Even when the RC4 encryption cipher is used, it is highly vulnerable
to known attacks because there is no security or verification mechanism
in play for 802.11 users. Making this problem worse is that someWLANs set their WEP keys from existing passwords; this makes the
passwords vulnerable if the keys are also determined.
Even with extended authentication, there isn’t any support offered.
Other security mechanisms vulnerable include:

 Smart cards
 Certificates
 Token cards
 Passwords (one-time expiry)
 Biometrics
 Rekeying global keys
 No dynamic per-station or session key management

The market hype for most 802.11 products is that they offer security
that is essentially “equivalent” to that of wired Ethernetworks. The
truth is that wireless networks are vulnerable to attack. If you are
unaware of all the problems that exist for a typical WLAN, it makes you
that much more vulnerable to compromising your internal network
infrastructure for anyone with enough time and tools at their disposal.

By taking the proper precautions, you can effectively learn how to
protect yourself, based on these types of vulnerabilities. Understanding
how to establish password policies, add the highest level of encryption
possible, and screen out MAC addresses from wireless NIC cards that
don’t belong on your network are just some of the ways you can protect
yourself.
Even if you are only able to slow down a hacker from accessing your
network, that might give your administrator enough time to see if security
is being violated on any of your computing platforms, identify the
problems, and correct them before your WLAN has difficulties.
136 times read

Related news
» Managing Keys in an Open System
by alperen posted on Apr 29,2010
» Managing Keys
by alperen posted on Apr 08,2010
» Point-to-Point Wireless Application Security
by alperen posted on Apr 19,2010
» Conclusion: Finding Security in an Unsecured World
by alperen posted on Apr 21,2010
» Common Security Pitfalls
by alperen posted on Apr 08,2010
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

admin

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.