Skip the navigation
Opinion

Securing the Air: Recognizing Risk in Wireless

By Anil Khatod, AirDefense Inc.
October 4, 2004 12:00 PM ET

Computerworld - The benefits of wireless LANs are undeniable, but the risks introduced by them are increasing exponentially. According to In-Stat/MDR, more than 75 million Wi-Fi devices have been deployed worldwide, and another 4 million new WLAN devices are being shipped per month.
Some organizations think their investments in firewalls and virtual private networks will protect them from the risks of WLANs. However, they don't realize that the WLAN signal bypasses all wired-side security and opens a back door for an intruder. Simply banning WLANs isn't an option, either, because most laptops are shipped with built-in wireless cards. If companies were to ban wireless networks, they would need to ban the use of laptops, which is an impractical solution.
The fact is, any wireless device connected to a wired network essentially broadcasts an Ethernet connection and an on-ramp to the entire enterprise network. Unless properly secured and monitored across the global enterprise, these self-deploying, transient wireless devices and networks are dangerous to all organizations. Intruders and hackers will use an unsecured WLAN to break into corporate networks and compromise the integrity of financial data, customer information or even trade secrets. No longer should the security of wireless networks be a peripheral thought.

The difficulties of securing the air
To understand the risk of WLANs, one must first understand the security vulnerabilities of all WLANs. WLANs face all of the security challenges of any wired network. In addition, risks are introduced by the nature of wireless technology.
First, the medium in which a WLAN operates is the air, an uncontrollable space. In addition, wireless devices self-deploy and have the capability to connect to strangers. Due to the growth of WLAN-enabled laptops and the increasingly wireless-friendly Windows XP operating system, laptops in the default setting automatically search for an access point (AP) to connect with. Lastly, wireless devices are transient in the way they connect. If a wireless device picks up a strong signal, it may connect with the new AP even if the AP is the laptop of an intruder in the parking lot.
There are many ways in which WLANs can be compromised.
More than rogue access points
A rogue WLAN has traditionally been thought of as a physical AP unsanctioned by network administrators. Today, rogue WLANs are further defined as laptops, handhelds with wireless cards, bar code scanners, printers, copiers or any WLAN device. These devices have little to no security built in, making it easy for intruders to find an entry point. Rogue APs could be maliciously placed by intruders



Additional Resources
Forrester Consulting - Optimizing Users and Applications in a Mobile World
WHITE PAPER
Solving application issues over the WAN requires careful consideration. Based on their independent research, Forrester Consulting offers recommendations on how to tackle application performance issues, insufficient bandwidth and the inability to quickly restore users in a disaster.

Read now.

Security KnowledgeVault
WHITE PAPER
Security is not an option. This KnowledgeVault Series offers professional advice how to be proactive in the fight against cybercrimes and multi-layered security threats; how to adopt a holistic approach to protecting and managing data; and how to hire a qualified security assessor. Make security your Number 1 priority.

Read now.

Cut Communications Costs Once and for All
WHITE PAPER
New IP-based communications systems are being deployed by small and midsized businesses at a rapid rate. Learn how these organizations are enabling faster responsiveness, creating better customer experiences, speeding office or mobile interactions, and dramatically reducing existing communications costs.

Read now.

Mobile and Wireless White Papers
Digital Transformation: Creating New Business Models Where Digital Meets Physical
Individuals and businesses alike are embracing the digital revolution. Social networks and digital devices are being used to engage government, businesses and civil...
Empowering Your Mobile Worker
Today's most productive employees are mobile, and your company's IT strategy must be ready to support them with 24/7 access to the business...
An Interactive Guide: Bring Your Own Device
BYOD presents significant security and management challenges to IT departments who want to take advantage of the trend, but still protect corporate assets....
Calculating ROI for Mobile Client Acceleration
As mobile devices continue to expand in business use, ensuring these devices have optimal performance is becoming an IT imperative. This EMA paper...
Tablet Computing Without Compromise
This paper provides an overview of how and why that migration-from any old tablet to Windows tablets-came to be.
All Mobile and Wireless White Papers
Mobile and Wireless Webcasts
Live Webcast
North Pole to South Seas: Overcoming the Pitfalls of remote Performance
In today's always-on world, connectivity is a business requirement. You need the tools that allow you to operate as if you were on...
Supporting Mobile Productivity With A Limited IT Budget
Join us and hear from Kaseya mobile IT management experts as we discuss core strategies for supporting the mobile revolution on a shoestring...
North Pole to South Seas: Overcoming the Pitfalls of remote Performance
In today's always-on world, connectivity is a business requirement. You need the tools that allow you to operate as if you were on...
Unified Communications 101
What's the best way to implement a unified communications solution for your organization?
QNX® and BlackBerry® PlayBook™ Tablet.
RIM's multi-processor, multi-tasking BlackBerry PlayBook runs a new Tablet OS powered by QNX, a bullet-proof microkernel operating system. This track will take a...
A Close Look at Tablets
Learn More
All Mobile and Wireless Webcasts
Newsletter Sign-Up

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  1. View all newsletters | Privacy Policy
IT Jobs