WiFi Security (Beta)
Setting up WiFi security
I have written a new summary of WiFi security measures as part of the notes for a recent WiFi Networking class. It is more accurate, complete and concise that what I have here. In particular, I've documented the futility of turning off the SSID beacon, and of fussing with MAC address filtering. Someday I hope to consolidate that summary with the information on this page.
Start here: Consumer Reports has a good WiFi overview, which describes the basics of wireless security. HP also has a good overview. These overviews are not sufficient, but they are a good introduction to wireless security.
Then read this: Windows Secrets Newsletter, edited by Brian Livingston, published an up-to-date roadmap for setting up strong WiFi security.
The first step is to "Throw out all your old WiFi junk." If you're not ready to do that, you don't want to be well protected. :-) The article was prompted by the recent release of WPA2 client software for Windows XP.
Free but bogus WiFi "hotspots" are a prime trap for the unwary. They even have a name -- "Evil Twin. See the block below.
About.com also has extensive coverage of WiFi security. Their general index will lead to most of it. Their article on setting up home wireless security is comprehensive. I'd recommend starting with Wireless Security FAQs.
JiWire can run a basic test of your WiFi security (requires IE6 or IE7 and you must allow ActiveX). They also have a comprehensive guide to implementing WiFi security.
How to use Windows Firewall correctly to protect yourself at WiFi hotspots. (Most other firewalls should not have this vulnerability.)
WPA
The WiFi Protected Access 2 (WPA2) update for computers that are running Microsoft Windows XP with Service Pack 2 (SP2) is now available. This update enhances the Windows XP wireless client software with support for the new WiFi Alliance certification for wireless security.
The update also makes it easier to connect to secure public spaces that are equipped with wireless Internet access. These locations are otherwise known as "WiFi hotspots." However, there are some shortcomings...
Easy Street
"New technology allows you to set up a wireless network with WPA security with the push of a button." --Linksys They have introduced SecureEasySetup, which is designed to make it easy to set up a wireless LAN secured by WPA by simply clicking a software button in the setup utility and pressing a physical button.
WiFi Protected Setup: "Wi-Fi network security is about to get simpler. Instead of selecting a security method and entering a password to connect to a secure Wi-Fi network, you'll soon be able to connect by simply pressing a button or entering a short PIN code." --PC Magazine [more]
Big hole in Intel's Centrino WiFi
A critical hole in Intel's Centrino WiFi technology for laptops was revealed at the hackers convention held in July, 2006. If you have not patched it yet, you will want to take a look at the details now.
Don't get hijacked by an Evil Twin
It's easy for evil doers to intercept your WiFi connection at a wireless hotspot. They want to intercept your passwords and other private information so they can steal your money or ID. [more]
They use an "evil twin" of the hotspot you intended to connect to. The evil twin works like the real hotspot, but "wire taps" your information. Computerworld's "Don't fall victim to the 'Free Wi-Fi' scam" has information on protecting yourself, with special instructions for Vista. [more]
Coffee shop WiFi for dummies at SecurityFocus is a "plain English" article about this other dimension of hotspot security.
The free LucidLink WiFi Client will help you avoid Evil Twin and other insecure hotspots.
JiWire Hotspot Helper adds another layer of security VPN to your security to thwart Evil Twin and other attacks. $25/yearBluetooth worse than WiFi
Bluetooth (mice, headphones, cameras, etc.) security is even worse than WiFi's. You can be exposed to the usual range of attacks if your laptop has Bluetooth enabled. They include complete access to your hard drive, eavesdropping on your microphone, and remote code execution.
More about wireless security on the Web
You can search for free or pay WiFI Hotspots at PC World's directory.
The Wi-Fi-FreeSpot™ Directory is a listing of locations that offer Free WiFi.
HP's Wireless Networking Center has broad coverage of wireless security, and includes a free HP Network Assistant, which evidently sets up your security "automatically."
Preston Gralla wrote an easy to use article on securing yourself at wireless hotspots that you might find easier to use.
" Complete Guide to Wi-Fi Security at JiWire is another comprehensive" article that looks well done.
Most ID theft still takes place offline though. :-)
AirDefense Personal has free defense software for wireless connections.
- • attack vectors
- deception the #1 threat
- phishing #1 deception
- poisoned websites
- poisoned email
- email attachments
- downloads
- spam (scams and phishing)
- hackers and worms
- popup warnings
- • malicious content
- spyware
- viruses and worms
- trojans
- • backup is security job one
- • develop your "web smarts"
- don't get hooked
- guard against spyware
- be careful with email
- fear attachments
- surf safely
- • tighten security settings
- windows
- browsers
- email clients
- • defense tools and software
- firewalls
- hardware firewalls
- anti-virus
- anti-spyware/-malware
- all-purpose security suites
- • patch and upgrade software
- • bonus: double your security
- • test your protection
- • protect your privacy
- • WiFi security