Wireless Security

--Originally published at Intervention IT

Since the wireless option became popular, the security needs have changed.

 

Service side identification (SSID) is the network name that the access point broadcasts.

This SSID is usually set by the vendor, and usually shows names like Linksys, Nexus, or other. It only says what the wireless access adapter is.

 

We want to implement security using:

  • WEP (Wired Equivalent Privacy) Even when using RC4 cipher, it can be easily  cracked.
  • WPA (Wi-Fi Protected Access) is stronger than wep and uses temporal key integrity protocol (TKIP) became insecure and obsolete in 2012.
  • WPA2 Uses advanced encryption standard.

 

Wi-Fi Authentication:

Open: Anyone can connect.

Personal: Based on pre-shared key.

Enterprise: Extensible Authentication Protocol (EAP), Username/ Pass, smart card, tokens.

 

Others:

MAC Address filter.

DHCP to authenticate first.

Firmware.

Configuration Password in the ap.

Unauthorized access point.