How 802.11w will improve wireless security - Network World

Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Wireless & Mobile

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Q&A: Firetide CEO Bo Larsson. Listen now!

Network World Panorama

Wireless mesh standard gets boost; New BlackBerry debuts. Listen now!

Network World 360

Additional Resources

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

Discover how to Create an Orchestrated Data Center through Virtualization Novell

IT professionals like the idea of consolidating hundreds of servers into only a few, but it takes a lot more to cost effectively consolidate and virtualize servers. Watch this six-chapter webcast, "Reduce Complexity and Cost - Windows Server Consolidation with Virtualization" to learn how to effectively consolidate your Windows environment. One of the themes explored includes the characteristics of an orchestrated data center, which includes: Resource management, dynamic provisioning, job management, policy management, accounting and auditing and real-time availability. Learn more about orchestration and much more today. Register below to learn more and be entered to win an Archos 605 Portable Media Player.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

f**k.me, bang.me, suck.me, etc. etc...- Anonymous

Join the Discussion

How 802.11w will improve wireless security

Wireless Security By Joshua Wright , NetworkWorld.com , 05/29/2006
  • Social Web 
  • Email 
  • Feedback 
  • Close

Since the ratification of the IEEE 802.11i amendment, organizations have been able to take advantage of improved security on wireless networks with WPA2-compliant hardware. However, the protection currently afforded to administrators only applies to data traffic and does not provide any protection for management or control operations on wireless networks.

Enter the IEEE 802.11w Task Group (TG). Approved as an IEEE 802.11 TG in March 2005, TGw is chartered to improve the security of wireless networks by protecting management frames. As other wireless working groups extend the functionality of management frames to include sensitive information including radio resource data, location-based identifiers, and fast-roaming information, it becomes clear that security in wireless networks needs to be extended to management frames as well as data frames.

The IEEE 802.11w TG has several challenges to overcome, however. To protect the confidentiality of management traffic, IEEE 802.11w assumes that the client and the access point have exchanged dynamic key content. This precludes the protection of any management frames prior to the delivery of key content, thus exposing network name (SSID) information and other capability information needed for clients to connect to the network. Maintaining backward compatibility for future non-IEEE 802.11w-compliant wireless devices will also be challenging for organizations, limiting the protection afforded by 802.11w until all hardware has been upgraded to support the required functionality.

A TGw solution that can identify spoofed management frames can disregard some malicious traffic used to launch DoS attacks against the network, such as a deauthenticate flood attack. However, mitigating DoS attacks is not the goal of the TG, and appropriately so; even if the AP and client can identify malicious management frames, 802.11w can never mitigate the effectiveness of RF-jamming attacks. Furthermore, the IEEE 802.11w TG has not indicated it intends to provide protection for control frames on the wireless network. Without protection, the attacker can to choose from a variety of DoS attacks that exploit various wireless-medium control techniques.

1 | 2 |  Next >
Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code