- 10 ways the Chinese Internet is different
- Hacker writes rootkit for Cisco's routers
- Verizon snares $678 million federal network deal
- Cisco loses $2 million order to Nortel
- HP buys EDS for $13.9 billion
Rss FeedThe movement towards laptop computers has fueled an unprecedented number of data breaches. For IT and Information Security, encryption and training has proven ineffective against careless users and insider threats. This paper discusses these limitations and explains how endpoint security allows remote deletion of sensitive data, tracking of computers outside the network and the physical recovery of missing computers. Learn how you can ensure mobile data protection regardless of end-user interference.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
Find out how you can consolidate Windows workloads and create a more efficient virtualized data center in this informative webcast, "Reduce Complexity and Cost - Windows Server Consolidation with Virtualization." Six concise webcast modules are available for your viewing. Watch them all consecutively or only the topics that interest you. The modules cover performance, user case studies, enterprise-level support, managing windows workloads, setup and configuration and the future of virtualization. Learn more today. Register below to learn more and be entered to win an Archos 605 Portable Media Player.
We're left with the question: How do you secure your WLAN?
If you are starting from scratch and have no legacy equipment to contend with, the answer is to use WPA with 802.1X authentication and plan a migration to 802.11i when equipment becomes readily available.
You won't pay a premium to use 802.1X. It's free and built into Windows XP and Apple's Mac OS/X. Picking gear that supports 802.1X and WPA is just a matter of looking for the Wi-Fi Alliance WPA-Enterprise sticker. You'll also need a RADIUS server that supports 802.1X authentication.
As an alternative to WLAN-based encryption that WPA and 802.11i offer, you can use IPSec, especially if your network includes a strong IPSec remote-access solution.
From a security standpoint, IPSec offers a stronger model than WPA, but the differences are unlikely to be applicable to anyone outside the military. IPSec also has its own costs, mainly tunneling overhead could cause performance problems in a high-speed environment.
You also can layer a simple VPN protocol, such as Point-to-Point Tunneling Protocol (PPTP), on top of your wireless connections that only support WEP natively. The benefits of PPTP (or any VPN protocol) over simple WEP are authentication and a second layer of encryption. PPTP has a much weaker security model than IPSec, but has been very well supported in all laptop operating systems for more than five years. The likelihood you'll find a device that cannot do WEP plus PPTP is fairly low. The alternatives, such as pure IPSec or IPSec over Layer 2 Tunneling Protocol, are attractive from a security point of view, but not from an interoperability and ease-of-use point of view.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
