DOD IT projects come under fire

Bob Brewin   Today’s Top Stories    or  Other Security Stories  

Why SaaS is Vital to Email and Web Security Avoiding the Latest Phishing Attacks Safeguarding Critical Data Intercept Spam & Viruses Seven Steps to Secure and Seamless Field Mobility Backup and Recovery for Microsoft Exchange Server Sign up to receive Security Resource Alerts

May 20, 2002 (Computerworld) -- For weeks, the agency responsible for the U.S. Department of Defense's global networks and classified command and control systems had a gaping security hole in its own front yard. Security cameras at its Arlington, Va., headquarters were connected to a nonsecure wireless LAN until last week.

Chris O'Ferrell, chief technology officer at NetSec Inc. in Herndon, Va., which provides intrusion-detection services to numerous federal agencies and commercial customers, detected the nonsecure wireless LAN at the Defense Information Systems Agency (DISA) on May 10.

While parked across the street from DISA's headquarters, O'Ferrell was able to view the Service Set Identifier (SSID) numbers of access points and numerous IP addresses. Using a standard 802.11b wireless LAN card attached to his laptop computer and AP detection software from San Diego-based NetStumbler.com, he was able to scan the network in less than half an hour.

Lackadaisical Safeguards

O'Ferrell, who didn't attempt to enter the network, also determined that DISA had failed to protect the system with the most basic form of 802.11b security, the Wired Equivalent Privacy (WEP) protocol.

The lack of encryption and other protections could make it possible for an intruder to enter the security camera system by launching a denial-of-service attack against a specific access point, allowing the intruder to "spoof" that access point. That would enable him to view what security personnel see with the closed-circuit TV camera.

The wireless LAN allows security personnel to remotely pan, tilt or zoom the cameras, according to Betsy Flood, a DISA spokeswoman.

That information could make it easier for intruders to conduct a physical penetration of the compound, which houses the Defense Department's Global Network Operations Center, Computer Emergency Response Team and Network Security Operations Center.

O'Ferrell expressed concern that DISA had taken what he considered to be a casual approach to wireless networks operating at its headquarters.

Flood confirmed that DISA had operated a closed-circuit TV security camera system for about 45 days without encryption while it was being tested. During that time, she said, anyone sniffing the nonencrypted system could indeed "see what we see on our video monitors, i.e., the parking lot, the front gate, the fence line, etc."

Flood, who said on May 16 that the agency planned to encrypt the network by the end of that day, also acknowledged that one of the cameras was broadcasting the "AP-BLDG 12" SSID, an access point SSID for one of the cameras in the compound. She said DISA is working with its vendors to change settings to make the system more secure.

Flood said DISA's closed-circuit TV wireless LAN would be encrypted with 64-bit WEP and a trademarked 128-bit encryption algorithm from Bedford, Mass.-based RSA Security Inc. called RC4. She added that it would also be protected by a control table for Media Access Control addresses, the unique identifier for each computer on a network.

Flood emphasized that the wireless LAN security camera system was separate from other DISA networks.

O'Ferrell said the SSID of the access point he detected had an obvious name; AP-BLDG 12 easily correlated with the building number painted on the DISA headquarters. Such information could help an intruder "launch a 10-second [denial-of-service attack] against the DISA [access point], knock it out, set up their own [access point] with the SSID, and DISA would never know," he said.

O'Ferrell said it's both prudent and easy to turn off an SSID.

Joe Weiss, vice president of the network application division at Aeronautical Radio Inc. in Annapolis, Md., which provides wireless communications services to the airline industry, said it's a good idea for DISA to encrypt traffic to and from closed-circuit TV cameras running over an 802.11b wireless system. Operating them in the open would make it easy for non-DISA personnel to take control of the system, he said.

Earlier this year, Weiss said, an 802.11b wireless camera installed by one airline at Dallas/Fort Worth International Airport was inadvertently controlled by personnel at another airline.

Jim Lewis, a technology and public policy analyst at the Center for Strategic and International Studies in Washington, said DISA's security lapse illustrates the problems that the proliferation of wireless systems and devices poses for government and commercial organizations.

"This could happen to anyone, because people are deploying systems before thinking about security," he said.

Reporter Dan Verton contributed to this story.

Stop the Sniffers Wireless LAN detection, sniffing and hacking tools have become more sophisticated over the past year and are widely available on the Web. To protect their wireless networks, enterprises should: Disable the Service Set Identifier on all access points and wireless devices. If an SSID is broadcast in the clear, snoopers could set an access point with the same SSID and route network traffic through their device. Encrypt all IP addresses. Broadcasting IPs in the clear makes it easy for an attacker to determine network topology. Encrypt all sensitive traffic using the 128-bit Advanced Encryption Standard algorithm. Sniff their own buildings. Increasingly, users are making end runs around IT and plugging an access point into the office LAN for convenience. Check "war driving" bulletin boards such as www.netstumbler.com to see if their access points have been sniffed and identified. Confine the signal to a building or corporate campus by using tuned, directional antennas in lieu of omnidirectional antennas that come with off-the-shelf access points.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

Army taps 128-bit encryption for battlefield wireless LANs DOD IT projects come under fire

"This company's infrastructure group is running a disaster recovery exercise with a reluctant participant: an IT manager who's notorious as..." Read more... "It's IT Blogwatch: in which Mozilla's Firefox Web browser continues to gain market share, smashing records as it does so...." Read more... Read more Security posts or See all Blogs

Microsoft promises four patches next week Google gives away home-cooked Web application security scanner Storm botnet stages Fourth of July attacks More top stories...

Microsoft trumpets security additions in upcoming IE8 Apple cuts price of high-end SSD MacBook Air by $500 Ultrathin showdown: Apple MacBook Air vs. Lenovo ThinkPad X300 vs. Toshiba Portege R500

This old laptop: Revitalizing an aging notebook on the cheap All it takes is a couple hours and about $125 to breathe new life into an old laptop. Here's how. Bill Gates moves on Is Microsoft's Golden Age over? What are Gates' most memorable quotes? Find out in Computerworld's complete coverage of the end of the Bill Gates era at Microsoft. Five things you should never tell your boss There are some things your CIO definitely doesn't want to hear. Also don't miss the flipside, Five things you should always tell your boss. Hands-On: Firefox 3 fixes what's broke and keeps what's right With its latest version, Mozilla's browser continues to raise the bar for what Web browsers should be. Windows Vista A to Z Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS. More Continuing Coverage After 9/11: Homeland SecurityAsk a Premier 100 IT LeaderBlackBerry Legal BattleData Security BreachesElectronic VotingFirefoxH-1B VisasHP's Boardroom ScandalHandheld DevicesHurricane Katrina AftermathMicrosoft Legal IssuesMicrosoft's VistaOpen SourceRFID TechnologySCO's Linux FightSarbanes-Oxley ActSpamVoice Over IPWi-FiWindows Meta File VulnerabilityWindows XP Service Pack 3 IT Careers 2010 Four years from now, the IT field will be a vastly different place. Will you be ready? More Special Reports Premier 100 IT Leaders 2007 Best in Class2006 Computerworld Horizon Awards2006 Premier 100 IT Leaders2006 Salary Survey2007 Best Places to Work in IT2007 IT Forecast2007 Premier 100 IT Leaders40 Years of ComputerworldASPs, Take TwoBest Places to Work in IT 2003Best Places to Work in IT 2004Best Places to Work in IT 2005Best Places to Work in IT 2006Business Intelligence Home RunsBusiness Intelligence: Smarter BIBusiness Intelligence: The Future of BICRM Goes VerticalCRM: Sober CRMCareer Planning Guide 2005Careers: IT Profession 2010Computerworld Horizon Awards 2005Data Management: Mining for GemsData Management: Taming Data ChaosDevelopment: Hard-Workin' Web SitesDevelopment: New Tools New ChoicesDevelopment: The New World of Application DevelopmentDevelopment: The Web Services TsunamiDevelopment: Web Services HurdlesDisaster Recovery: Preparing for the WorstE-commerce Grows UpE-mail/Groupware: Big DecisionsFaces of Mobile ITForecast 2006Global MobileHardware: Multiple Cores, Multiple ChallengesHardware: On-Demand Un-HypedHardware: The Shape of Things to ComeHorizon Awards: 10 Cool Cutting Edge TechnologiesIT Management: Guide to Managing VendorsIT Management: Navigating Global ITIT Management: Recovery AheadIT Management: The Future of ITIT Management: The Resourceful Project ManagerInnovative Technology Awards 2004Management: Reinventing ITMicrosoft in TransitionMobile/Wireless Leaders and LaggardsMobile/Wireless: The Untethered WorkerMobile/Wireless: Tiny Gadgets, Huge CostsNetwork Management: Taking ControlNetworking: Turbulence Ahead!Networking: VoIP Goes MainstreamOperating Systems: In the Slow LaneOperating Systems: Linux Goes GlobalOperating Systems: Should You Nix Unix?Outsourcing: Offshore Buyer's GuideOutsourcing: Outsourcing DangersPremier 100 IT Leaders 2004 Best in ClassPremier 100 IT Leaders 2005 Best in ClassROI: Do the Math!Salary Survey 2003Salary Survey 2004Salary Survey 2005Security Action PlanSecurity: Compliance HeadachesSecurity: Proactive SecuritySecurity: Risk and RewardSecurity: Tips From Security ProsSouped-up SecurityStorage: Battling ComplexityStorage: Cheap & Secure Data StoresStorage: Stretching Your Storage DollarsStorage: The Lean Storage MachineStorage: The New Rules of StorageStorage: The Ultimate Backup GuideSupply Chain: Missing LinksSupply Chain: RFID Reality CheckThe Business of SecurityWeb 2.0 SecurityWireless: Wireless At Work All Zones Application Performance Zone Business Continuity Zone Data Center Management Zone Enterprise-Class Security Zone The File Data Management Zone Grid Computing on Windows Zone Security Management Zone ITIL Best Practices Zone The SAS Zone Storage Virtualization Zone Business Intelligence and Analytics Zone See your link here

Why SaaS is Vital to Email and Web Security Why SaaS is Vital to Email and Web Security Download this webcast, free, compilments of Webroot Software Go to the webcast  Computerworld Executive Bulletin: Building a Robust Antivirus Defense Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs. (Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more. Download this executive briefing  Eliminate SPAM, Gain Productivity Get this white paper now! (Source: MessageLabs) Learn all about the dangers and the costs of spam in all its forms - from stock-touting to spreadsheet. Also, understand the drawbacks of traditional hardware- and software-based defenses - and the unique benefits of MessageLabs multi-layered, managed Anti-Spam solution; as illustrated by a real-world case study where MessageLabs stopped spam cold. Download this white paper  White Papers Read up on the latest ideas and technologies from companies that sell hardware, software and services. Deploying Virtualized NetWare on Linux Whitepaper Toward More Flexible, Next-Generation Collaboration Solutions Driving Business Success Through Workgroup Choice and Flexibility View more whitepapers

• Army taps 128-bit encryption for battlefield wireless LANs
• DOD IT projects come under fire

• Microsoft promises four patches next week
• Google gives away home-cooked Web application security scanner
• Storm botnet stages Fourth of July attacks
• More top stories 

Security Management Zone Security management is the process of developing a comprehensive data protection plan. It takes into account all potential threats, the existing network environment, the future needs of the organization, and lays out a multi-tiered blueprint to integrate the security technology needed to combat these threats. CDW can help keep your network and data secure. Visit the CDW Security Management Zone now See All Zones

Fired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day. New baits

"Security Directions" virtual trade show 2008's Code-Red Security Issues for Protecting the Enterprise Webcasts, white papers, demos, and more. Presented in a unique 3-d environment. Enter our show right now! Click here to enter

In Security Security's important, and risk must be addressed, right? Sure, but watch for four signs your policies go a bit overboard. Click here to read the latest column by Jon Espenschied