What to watch out for with Wi-Fi

Determining the cause of poor application performance Leveraging Capabilities in your Existing Cisco Network for Optimized Performance and Troubleshooting What is NetFlow and How Does NetFlow Tracker Help? Toward More Flexible, Next-Generation Collaboration Solutions Driving Business Success Through Workgroup Choice and Flexibility Backup and Recovery for Microsoft Exchange Server Computerworld Executive Briefing: Automating Network Management Sign up to receive Security Resource Alerts

January 26, 2006 (Computerworld) -- Wi-Fi networks use short-range radio frequencies to communicate between devices, eliminating the necessity for running cable. While operating without wires is an advantage, users and IT personnel need to be aware that Wi-Fi networks do not recognize walls as barriers. The challenge is that Wi-Fi networks extend outside of approved areas, leaving users with leaky Wi-Fi and in the position where someone else's Wi-Fi network may be present and beckoning.
Wi-Fi technology creates many opportunities for malicious hackers to compromise systems and gain access to private data. In addition, the most common safeguards to securing 802.11 wireless LANs -- authentication, encryption and virtual private networks (VPN) -- are insufficient.
Like a grass hut, WLANs have doorways that close, but the structure remains porous. In the same way that sunlight leaks into a grass hut, Wi-Fi signals leak into and out of a company, building, campus or military base. The door on the hut is akin to the complex encryption, authentication and VPN layers designed to keep wireless networks safe. However, strengthening the "steel door" will not minimize the hut's remaining weak defense. While enterprise security professionals are concerned with outsiders breaking in, Wi-Fi networks heighten this concern with outside networks that overlap physical space.
Security is fundamentally about assumptions, and the problem with Wi-Fi is that assumptions change. There is a threat of exposed data in the air in the 300-to-500-foot radius around all laptops and access points. Because hackers can "spoof" a Media Access Control address and remain anonymous, it's almost impossible to block them at the so-called steel door. In addition, Wi-Fi attackers can deploy their own networks into an office by using their access points to attack laptops and systems. And they don't even need to be in the building.
What can be done to stop Wi-Fi attackers? First, look at the genesis of attacks. The majority of these attacks fall into one of these categories: to crack, to compromise and to circumvent the existing wireless security. In this piece, we will examine these attacks and provide best practices to safeguard WLANs.
Cracking the code
"Cracks" are the most direct attacks on encryption algorithms and have been particularly successful within the Wi-Fi environment. A Wi-Fi attacker can sit outside of his target in a parking lot or across the street and unassumingly engage in active or passive attacks while trying to crack an organization's encryption.
In the 1990s, when Secure Sockets Layer (SSL) was introduced, hackers attacked it, not by going after the underlying encryption algorithm, but through random number generators. It was hard to break SSL, but because SSL was built on top of random number generation, attackers could guess for access. Similarly with other encryption standards, there will be flaws in the implementation, and it's a matter of time before attackers find and infiltrate WLANs.
Compromising security virtues
With more vulnerabilities present than in the wired world, Wi-Fi networks are ripe for attacks based on compromised security and the anonymous nature of the attack. Attackers target parts of the WLAN system where minimal security has been deployed using strategies such as the following:

• Social engineering: Calling employees while posing as members of a security team to obtain credentials/protocols


• Stealing laptops


• Conducting malicious compromises: Disgruntled or disenfranchised employees create vulnerabilities for an attacker.

Circumventing the security traps
The most dangerous threat is when attackers circumvent existing security mechanisms. Attackers can create new, unfortified holes to trick wireless devices, such as laptops, to connect to them instead of approved, secured systems. To mitigate this risk, many organizations have adopted a "no wireless allowed" policy. However, even with regular internal checks to ensure that no unauthorized access points are present, an attacker can successfully trap enterprise devices from the outside.
Common device attacks include the following:

• Man-in-the-middle attack: Attackers inject an unapproved access point and have it associate with a legitimate access point to uncover and exploit exchanged credentials.


• Phishing attack: Attackers provide Web pages that look legitimate and that request users to enter valid credentials, which are then harvested and used by the attacker.


• "Evil twin" attack: Attackers deploy access points that look identical to legitimate ones to bait unsuspecting devices. Users unwittingly uses the evil twin access point where the attacker can steal credentials, read files or plant malicious code that uploads the next time the device connects to the legitimate network.

Summary
Securing Wi-Fi networks can be challenging for any organization -- whether a WLAN deployment is planned in strategic incremental steps or even when an organization works to enforce a "no Wi-Fi" policy to protect wired-side networks. There are far too many variables and assumptions that creep into the Wi-Fi security picture and make it increasingly difficult to lock down.
Because of the wireless activity that penetrates a physical space from neighbors and/or attackers, all organizations have a Wi-Fi network, whether it's approved or not. Perimeter-level security puts walls back up between a wireless infrastructure and the external world, preventing outsiders from communicating with internal systems and insiders from communicating with external systems.
Enterprises should investigate systems and best practices that provide them with the equivalent of stretching the security of the steel door across the entire grass-hut structure. Attackers will continue to exploit weaknesses in wireless infrastructure to gain access to systems by way of Wi-Fi signals that transmit beyond an organization's perimeter. A protected enterprise can visualize Wi-Fi activity, including where devices are and what they are connecting with in real-time. The result is a comprehensive overview that allows IT professionals to manage their organization's security in a new, more efficient and more effective way.
Matthew Gray is chief technical officer at Newbury Networks Inc., a supplier of location-enabled networks in Boston.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

"Mozilla's successful attempt to set a world record for downloads of a single program, Firefox 3 was dumb...." Read more... "It's the early 1990s when this pilot fish is challenged to find a better way to support telecommuting — and..." Read more... Read more Networking posts or See all Blogs

Microsoft promises four patches next week Google gives away home-cooked Web application security scanner Storm botnet stages Fourth of July attacks More top stories...

Microsoft trumpets security additions in upcoming IE8 Apple cuts price of high-end SSD MacBook Air by $500 Ultrathin showdown: Apple MacBook Air vs. Lenovo ThinkPad X300 vs. Toshiba Portege R500

This old laptop: Revitalizing an aging notebook on the cheap All it takes is a couple hours and about $125 to breathe new life into an old laptop. Here's how. Bill Gates moves on Is Microsoft's Golden Age over? What are Gates' most memorable quotes? Find out in Computerworld's complete coverage of the end of the Bill Gates era at Microsoft. Five things you should never tell your boss There are some things your CIO definitely doesn't want to hear. Also don't miss the flipside, Five things you should always tell your boss. Hands-On: Firefox 3 fixes what's broke and keeps what's right With its latest version, Mozilla's browser continues to raise the bar for what Web browsers should be. Windows Vista A to Z Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS. More Continuing Coverage After 9/11: Homeland SecurityAsk a Premier 100 IT LeaderBlackBerry Legal BattleData Security BreachesElectronic VotingFirefoxH-1B VisasHP's Boardroom ScandalHandheld DevicesHurricane Katrina AftermathMicrosoft Legal IssuesMicrosoft's VistaOpen SourceRFID TechnologySCO's Linux FightSarbanes-Oxley ActSpamVoice Over IPWi-FiWindows Meta File VulnerabilityWindows XP Service Pack 3 IT Careers 2010 Four years from now, the IT field will be a vastly different place. Will you be ready? More Special Reports Premier 100 IT Leaders 2007 Best in Class2006 Computerworld Horizon Awards2006 Premier 100 IT Leaders2006 Salary Survey2007 Best Places to Work in IT2007 IT Forecast2007 Premier 100 IT Leaders40 Years of ComputerworldASPs, Take TwoBest Places to Work in IT 2003Best Places to Work in IT 2004Best Places to Work in IT 2005Best Places to Work in IT 2006Business Intelligence Home RunsBusiness Intelligence: Smarter BIBusiness Intelligence: The Future of BICRM Goes VerticalCRM: Sober CRMCareer Planning Guide 2005Careers: IT Profession 2010Computerworld Horizon Awards 2005Data Management: Mining for GemsData Management: Taming Data ChaosDevelopment: Hard-Workin' Web SitesDevelopment: New Tools New ChoicesDevelopment: The New World of Application DevelopmentDevelopment: The Web Services TsunamiDevelopment: Web Services HurdlesDisaster Recovery: Preparing for the WorstE-commerce Grows UpE-mail/Groupware: Big DecisionsFaces of Mobile ITForecast 2006Global MobileHardware: Multiple Cores, Multiple ChallengesHardware: On-Demand Un-HypedHardware: The Shape of Things to ComeHorizon Awards: 10 Cool Cutting Edge TechnologiesIT Management: Guide to Managing VendorsIT Management: Navigating Global ITIT Management: Recovery AheadIT Management: The Future of ITIT Management: The Resourceful Project ManagerInnovative Technology Awards 2004Management: Reinventing ITMicrosoft in TransitionMobile/Wireless Leaders and LaggardsMobile/Wireless: The Untethered WorkerMobile/Wireless: Tiny Gadgets, Huge CostsNetwork Management: Taking ControlNetworking: Turbulence Ahead!Networking: VoIP Goes MainstreamOperating Systems: In the Slow LaneOperating Systems: Linux Goes GlobalOperating Systems: Should You Nix Unix?Outsourcing: Offshore Buyer's GuideOutsourcing: Outsourcing DangersPremier 100 IT Leaders 2004 Best in ClassPremier 100 IT Leaders 2005 Best in ClassROI: Do the Math!Salary Survey 2003Salary Survey 2004Salary Survey 2005Security Action PlanSecurity: Compliance HeadachesSecurity: Proactive SecuritySecurity: Risk and RewardSecurity: Tips From Security ProsSouped-up SecurityStorage: Battling ComplexityStorage: Cheap & Secure Data StoresStorage: Stretching Your Storage DollarsStorage: The Lean Storage MachineStorage: The New Rules of StorageStorage: The Ultimate Backup GuideSupply Chain: Missing LinksSupply Chain: RFID Reality CheckThe Business of SecurityWeb 2.0 SecurityWireless: Wireless At Work All Zones Application Performance Zone Business Continuity Zone Data Center Management Zone Enterprise-Class Security Zone The File Data Management Zone Grid Computing on Windows Zone Security Management Zone ITIL Best Practices Zone The SAS Zone Storage Virtualization Zone Business Intelligence and Analytics Zone See your link here

Advance your BlackBerry(R) solution management know-how this July Advance your BlackBerry(R) solution management know-how this July BlackBerry Technical Seminar, register today! Go to the webcast  Accelerate Your Pursuit of Perfection. Download this white paper, free, compliments of Kodak! (Source: Kodak) For almost 80 years, Kodak has been helping banks, insurance companies, healthcare providers, government agencies and other businesses produce billions of document images. So Kodak is uniquely positioned to know - and deliver-what customers want: easy-to-use scanners that output the best possible image quality. Download this white paper  Computerworld Executive Briefing: Automating Network Management Download this Executive Briefing now (a $195.00 value), compliments of ProCurve Networking by HP. (Source: Computerworld) This briefing looks at the basics of network management, which tend to get lost in the dizzying array of products and processes. It also examines new tools that are on the way to help IT executives deal with management in the new era of automation. Download this Executive Briefing now (a $195.00 value), compliments of ProCurve Networking by HP. Download this executive briefing  White Papers Read up on the latest ideas and technologies from companies that sell hardware, software and services. Deploying Virtualized NetWare on Linux Whitepaper Toward More Flexible, Next-Generation Collaboration Solutions Driving Business Success Through Workgroup Choice and Flexibility View more whitepapers

• Microsoft promises four patches next week
• Google gives away home-cooked Web application security scanner
• Storm botnet stages Fourth of July attacks
• More top stories 

XenServer FREE trial Citrix XenServer is the simplest and most effective way to virtualize and provision servers. XenServer combines comprehensive server virtualization capabilities with unparalleled scalability, performance, economics, and ease-of-use. Based on the open source Xen hypervisor, XenServer delivers fast performance, easy management, and advanced features such as live migration. Request free trial now

Who needs Mrs. Doubtfire? When it comes to spot-on "advice," we've got Aunt Donna. Watch the video Send in your question

Accelerate your pursuit of perfection For almost 80 years, Kodak has been helping banks, insurance companies, healthcare providers, government agencies and other businesses produce billions of document images. So Kodak is uniquely positioned to know and deliver–what customers want: easy-to-use scanners that output the best possible image quality. Download this white paper now!

Networking Know-How For tips and best practices on building anything in the network, see Sandra Gittlen's regular column. Click here to read the latest column by Sandra Gittlen