Wi-Fi Security

Administrative duties are often overwhelming when you have to worry about security for all your employees who are moving data across a wireless network. There are a number of wireless network analysis sniffer tools to help you determine the extent ... [full story]

The other type of IDS doesn’t rely on fuzzy logic or predefined attack signatures— instead it relies on people! Yes, they still do exist when it comes to evaluating potential problems with your network systems, and in many ways they ... [full story]

Many intrusion detection systems are founded on the philosophy that the computer is smart enough to recognize an attack when it is coming in. In order for that to be true, an experienced security expert must “predefine” classic attack patterns ... [full story]

There is a very important reason why you need an intrusion detection system—it gives you an essential layer of security that you must have in order to keep wireless hackers from gaining access to your network without your knowledge. ... [full story]

In general, the advantage of implementing a host intrusion detection system outweigh those of a network intrusion detection system, especially when it comes to dealing with encrypted transmissions. This is primarily because encryption protocols are more easily handled when dealing ... [full story]

The network-based intrusion detection system monitors both the LAN and WLAN in an effort to examine every single packet of traffic as it is transmitted across the network. The idea is to ensure that this traffic matches any known (preprogrammed) ... [full story]

Host-based intrusion detection systems specifically look for vulnerable systems. They use a host-based agent that works on each server in order to monitor both the system logs and the audit trails for any activity that might indicate a hacker trying ... [full story]

The best method to allow you to make certain your wireless network is protected against intruders is to implement and carefully monitor an intrusion detection system (IDS), so that unauthorized users are caught trying to access your network. If a ... [full story]

Why is the firewall important? If you consider networked information that resides on public network, then you realize all your information is virtually unprotected. Now, extend the concept of unprotected information to the store of data on your wirelessly ... [full story]

You can also use more effective passwords for any parameters on your wireless networking devices or access point. However, it is important to note that the encryption scheme and other settings will then have the minimum protection available. [full story]

How do you administer better security? You add a number of very carefully tailored authentication solutions so that only authorized wireless network users can access your WLAN Authentication solutions are built primarily on creating more secure:
Usernames/passwords
... [full story]

The most common error people make when it comes to wireless security is when administrators and/or users fail to change their default passwords, or create passwords based upon readily determined factors such as users’ names, birth dates, and pet names. ... [full story]

The modern enterprise is constantly evolving, and the need for a secure laptop computer to access your wireless network resources is absolutely essential. In this chapter we have seen how WEP has limitations with respect to potential vulnerabilities in your ... [full story]

Remote users constitute a predominant portion of Microsoft’s user base. Windows XP and Windows 2000 Server offer the capability for other Windows users to log into the “remote desktop” of another machine from a laptop computer. What is most interesting ... [full story]

Microsoft, dominant in the mobile operating system environment, is working to develop security solutions for its products. The company has formed a new division called the Security Business Unit to find out how to expand security opportunities. Microsoft is constantly ... [full story]

Windows XP, Lindows OS, and Macintosh OS X all have integrated support for 802.11 wireless NIC drivers. Almost all the major NIC vendors support 802.11b (and more are offering support for 802.11a integrated into the same wireless products). Since this ... [full story]

PC laptops usually run some version of Windows or some flavor of Linuxor UNIX to access your WLAN. Hardware solutions like the onedescribed above are usually your best route, rather than relying explicitlyon software to create a protective VPN link. ... [full story]

The products in the previous section help to secure your WLAN environment regardless of the weak protection afforded by 802.11b standard. No matter what solution you decide to implement, it is imperative that you fully examine all your options so ... [full story]

Vernier Network has created a system that is actually two hardware devices able to protect your WLAN with the following functionality:
Authentication
Control
Redirection
Logging of network traffic (respective to each WLAN) These two devices ... [full story]

One vendor of an effective hardware solution is Blue- Socket, which has produced a wireless gateway that establishes a firewall between the access point and the corporate intranet. This device requires that authentication take place through either its internal database ... [full story]

There are a number of vendors bringing to market hardware add-on solutions designed to help you overcome the vulnerabilities so prominent with WEP failures within the 802.11b WLAN security space. These products deal with these vulnerabilities in an effort to ... [full story]

Since the laptop is easy to lose and is often stolen, one way to make certain that unauthorized users cannot access your private wireless network is to ensure that they cannot access your computer in the first place. One of ... [full story]

PKI is an effective way for a laptop user to ensure the integrity of the wireless transmission as well as know who sent the message. PKI yields the services necessary for the creation and deployment of public key certificates. It ... [full story]

VPNs provide an optimal solution to secure data transmission over public network infrastructures. They are also useful for security in open wireless networks. WLANs are insecure by their very nature, but when you implement a VPN you add a layer ... [full story]

Smart cards are often an effective means of adding enhanced protection to your wireless laptop, though they add another layer of complexity at the same time. When you use a smart card in combination with authentication techniques that rely on ... [full story]

Another excellent way of adding protection to your WLAN is to set up your laptop so that it must identify its legitimate user correctly before the machine will turn on or allow any access to protected network resources. These hardware ... [full story]

Hackers are most interested in getting one of your employees’ laptops because it is easy to steal and is already enabled on your internal access control list (ACL). One of the problems with just trying to access your WLAN is ... [full story]

You can take special steps to protect yourself against the possibility of any wireless laptop being used against you. You need to implement encryption to limit the eavesdropping attempts against your network communications. Some companies use a special VPN link ... [full story]

The laptop computer is the best and worst device you could possibly own, at least from a security perspective. It is the best device in terms of sheer power and portability. However, it is the worst device because it can ... [full story]

Wireless laptop users can leave a connected computer unattended whileon the road or within their offices. Laptops are often confiscated and leftas open portals at airports and other public places. This chapterdescribes how 802.11b is built into many laptops and ... [full story]

Conclusion: Ensuring “Secure”Access Control In order to maintain secure access control of your wireless network, you need to think proactively about the deployment of your wireless products. Think about the security functionality and the specific features that are important to ... [full story]

You may choose to implement alternative forms of authentication for your WLAN including Kerberos or RADIUS. If you rely on the protection capabilities of your wireless equipment, then you will have enormous difficulty in finding answers. Don’t depend on ... [full story]