Wireless Security

Search Wireless Security

Bi-weekly notes on securing your wireless network by the experts at Wireless Vulnerabilities and Exploits, which catalogs potential holes in wireless systems. Send your wireless security questions to our experts.

You know you shouldn't still be using WEP - Here's another reason: 07/16/07; I heard about a new WEP cracking technique. Can you explain it?
Limiting wireless clients to secured access points: 06/12/07; I am attempting to enable all my wireless users to ONLY connect to WEP or WAP enabled WLAN's. I do not even want them to be able to see unsecured ones if possible, but would like them only to connect to secured ones. Do you think this is even possible and if so how easy is it to implement?
Securing a RADIUS server: 05/07/07; What measures are there to help secure a RADIUS server?
Using PEAP for wireless authentication: 04/23/07; I'm using PEAP in a Microsoft-centric environment as an authentication method for my wireless LAN. What steps should I use to secure my deployment?
Hunting down wireless devices doing MAC spoofing: 03/19/07; How do you locate devices when MAC spoofing is occurring?
Issues with SSID cloaking: 03/05/07; Are there any pitfalls to using SSID cloaking?
How Wi-Fi hotspots force you to log in: 02/12/07; How do captive portals work?
802.1X for a small network: 01/29/07; What are some easy solutions for implementing 802.1X based authentication on a SOHO wireless network?
Rogue access points and 802.1X: 01/08/07; If I implement 802.1X on my Ethernet switch ports, do I still have to worry about rogue access points?
WiMAX security issues: 12/11/06; What are the possible security risks associated with deploying and using WiMAX?
Will we see wireless driver exploits in the wild?: 11/27/06; How likely is it that wireless driver exploits will be seen in the wild?
Security issues with pre-802.11n wireless gear: 11/13/06; Are there any security risks associated with pre-802.11n networks?
The importance of wireless security: 10/23/06; Why is it that security is such a big worry for organizations when it comes to deploying wireless networks, applications and devices to improve employee productivity?
Upgrading embedded devices from WEP to WPA: 10/09/06; What's the best way to deal with embedded devices that only support WEP with respect to WPA/WPA2 networks and keeping them secure?
Defending your clients against wireless hackers with sniffers: 09/25/06; Can you explain how clients probing for preferred networks can be exploited?
Explaining WPA2: 09/11/06; Can you explain the differences between WPA and WPA2 and provide some information on the different features and functionality?
Is WEP ever appropriate?: 08/28/06; How insecure is Wired Equivalent Privacy?
Wireless lessons learned at a hacker conference: 08/14/06; This year's DEFCON was a lively one for wireless security. Probably the most significant event in the wireless realm was Johnny 'Cache' Ellch's and David Maynor's presentation on wireless driver vulnerabilities. This talk was presented at Blackhat by the duo a couple days earlier and Mike Kershaw touched on the topic in a previous installment of this column.
Protecting against vulnerabilities in wireless drivers: 07/24/06; One of the talks announced for the Black Hat conference this summer in Las Vegas is about 802.11 driver vulnerabilities, which can affect users even if they aren't connected to a network.
Tightening up home wireless security: 07/10/06; Could you expand on how we can secure home networks when using Wi-Fi technologies?
Best EAP for an enterprise wireless LAN: 06/26/06; What is the best EAP type to use when setting up an enterprise WLAN?
Wireless attacks: Damage and costs: 06/12/06; I am conducting a presentation on the importance of wireless security to an internal group. I am looking for recent statistics or surveys describing wireless attack incidents, the cost associated with the damage incurred, and the cost of resolving the compromise to the network.
How 802.11w will improve wireless security: 05/29/06; As other wireless working groups extend the functionality of management frames to include sensitive information including radio resource data, location-based identifiers, and fast-roaming information, it becomes clear that security in wireless networks needs to be extended to management frames as well as data frames.
Emerging wireless attacks: 05/15/06; What are the emerging types of wireless attacks and how can they be combated?
Protecting wireless-enabled laptops: 04/24/06; What are the most prevalent threats for wireless-enabled laptops?