Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : Wi-Fi Security : Wireless Vulnerability

Wireless Vulnerability

Apr 19,2010 by alperen

small font medium font large font
image


As convenient as wireless networks are, their infrastructure is always
vulnerable to attack. In fact, wireless systems throughout history have
been vulnerable to electronic warfare. If a hacker is going to attack your
network, wireless methods are the easiest and surest means to disrupt
an entire company (Figure 6.2).

Electronic warfare and its control is divided into three primary areas:

1. Electronic counter measures (ECM)
2. Electronic support measures (ESM)
3. Electromagnetic counter-countermeasures (ECCM)

ECMs are the actions you need to execute to stop a hacker from using
your radio spectrum and causing problems with your ability to keep
your wireless infrastructure intact. These types of attacks are often in
the form of jamming, an intentional transmission of radio waves that
causes serious problems in the functioning of any wireless networking
device. Deception, however, is worse, since it is the manipulation of your
network with the intent of misleading networking devices so that they think the hacker is actually part of your corporate network. This form of
simulation is analogous to a “spoofing” attack that can promote hostile
communication and lead to the intentional leakage of mission-critical
data through no fault of the user.
ESMs involve the interception, identification, analysis, and localization
of hackers disrupting your transmission sources. They also enable
you to determine what steps you need to take to deploy the correct
amount of force to counter any specified threat.
Hackers often spend an inordinate amount of time collecting intelligence
for the purpose of deciphering electromagnetic data radiated by
your network.
Communications intelligence, non-communications electronic intelligence
(ELINT), and electromagnetic data are all part of a method that
provides signal intelligence (SIGINT).
Electronic counter-countermeasures are steps you can take to protect
your wireless network against future attacks. One way that these countermeasures
can be used is to design your WLAN so that you are operating
in ways that the hacker won’t anticipate.

Moving on up! (to the 5-GHz band) One good method of staying
ahead of hackers attempting to compromise your WLAN is to migrate to
802.11a so that the frequency allocation you use for your wireless transmissions
is in the 5-GHz band as opposed to the 2.4-GHz band. Most
readily available scanners are in the 2.4-GHz band and since the higher
band frequencies are as yet unallocated for many commercial applications,
it is just that much more difficult for someone to attempt an attack
on your WLAN. Sometimes that is all it takes, just to migrate to a newer
application of an existing technology, to put yourself one step ahead of
hackers attempting to compromise your wireless infrastructure.

Fortress of solitude (wirelessly speaking) Another way of instituting
wireless electronic counter-countermeasures is to isolate the
building that houses your WLAN from radio frequency interference.
More to the point, this means interference caused by a wireless hacker
attempting to disrupt your wireless infrastructure (Figure 6.3).
Most frequencies in the 2.4-GHz and 5-GHz bands penetrate most
standard building materials, but adding shielding will hamper the
migration of those frequencies through your corporate facilities to the
outside world. Additionally, some building materials and woods are
being used in modern cell phone devices to protect users against stray
RF energy released during the course of a normal telephone call. Essentially, this means that you can place aluminum panels in the walls near
your wireless access point to prevent the transmission of your wireless
network beyond a certain distance. This means that only wireless users
in your immediate corporate facilities can access the WLAN, while hackers
will have a much harder time doing so. In many cases, creating this
“fortress of solitude” makes it just that much more difficult for outsiders
to attempt any form of electronic warfare on your system; that may be
all it takes to protect yourself against the majority of hackers eager to
disrupt your wireless infrastructure.
163 times read

Related news
» Your Best Defense Against an Attack
by alperen posted on Mar 30,2010
» Wireless DoS Attack
by alperen posted on Mar 25,2010
» Eavesdropping
by alperen posted on Mar 25,2010
» Conclusion
by alperen posted on Apr 08,2010
» Wireless Defined
by alperen posted on Mar 25,2010
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

admin

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.