Wireless Security

Wireless networks have given us the convenience of accessing the information we need wherever we need it, however an open wireless network allows unauthorized devices and users to use your network bandwidth, and experienced intruders may be able to access your personal and company data.  It is estimated that approximately 30-50% of wireless networks are not secured.   

 

Secure your wireless network 

First things first

The first thing to understand about wireless security is that by default, you have none. The router you buy comes preconfigured for open access, which means that all of your neighbors and anyone passing by, can hop on and begin using your network bandwidth and may be able to access your data.  Many popular routers can be accessed from a distance of approximately 300 feet, so your wireless network access probably extends beyond your property line.

Change the default user name and password

Most manufacturers use a simple login/password combination and this information is easily available online. What this means is that out of the box, most any tech-savvy person can access your router and make configuration changes.  The first thing you want to do is to change your user name and password to something secure and store that information in a safe place for when you need to make additional changes.

The SSID

The SSID (Service Set Identifier) is an identification code (typically a name) broadcast by a wireless router.  The SSID is the name listed when viewing available wireless networks.  Hiding the SSID is a configuration option on your router and keeps the router from broadcasting that name.  While hiding the SSID will not prevent unauthorized access, it will add an 'out of sight, out of mind' element to your security practices.  Changing the default SSID is suggested and using a name not typically associated with you may prevent people from easily identifying which wireless network is yours. 

Wireless encryption

Which should be used, Wired Equivalent Privacy (WEP) or Wi-Fi Protected Access (WPA/WPA2)?  WEP was introduced in 1999 and remains the most commonly used encryption method,  It was discovered that WEP has a number of flaws which make it relatively easy to crack, resulting in the introduction of WPA, followed by the more secure WPA2.  WPA is supported by Windows XP with Service Pack 2, Vista and Mac OS X.  WEP is a reasonable deterrent for home networks, but it is recommended that security keys be changed every six months.  For added security use WPA or WPA2. 

Filtering by MAC address

Each network card (including wireless network cards) comes with a unique identifier, called the MAC (Media Access Control) address.  Routers can be configured to restrict access based on MAC addresses, so you can define which device can or cannot connect.  Depending on the number of wireless devices on your network and the frequency of adding/removing devices, this may be a cumbersome process.  And, you guessed it, a good hacker can get around this one too.

Check your logs

Most routers keep activity logs showing devices that have attached to them.  Periodically checking these logs will keep you informed of potential security breaches and help you maintain a properly secured network.

 

Call a professional

Wireless networking options can be confusing.  If you have any questions, contact Viking IT for assistance. 

 

'…Remember, the goal is to make it difficult for attackers or malware to penetrate your system. Nothing you do will make your network 100-percent impenetrable to a dedicated and knowledgeable attacker. But, by putting various layers of defense in place such as complex passwords, firewalls, antivirus software, and other security measures, you can make it sufficiently hard enough that no casual attacker will want to bother.'

-      Essential Computer Security, Tony Bradley, CISSP-ISSAP. About.com’s Guide for Internet/Network Security.  Harlan Carvey, Technical Editor.

 

 

Tips for the road warrior

When connecting your wireless computer to your local Wi-Fi café, remember that you expose your computer to other Wi-Fi users.  These tips will help keep your computer and data safe from others.

Disable auto-logon

Windows allows the option of logging in without having to type in a password. While great for convenience, this eliminates a great deal of system security.  Require a password for your laptop for greater protection.

Use strong passwords

Choosing a password that includes a combination of numbers, upper and lower case letters and special characters (#$%&@!) makes your password that much more difficult for someone to crack.

Encrypt critical files

Encryption allows folders and files to be locked down so that only those with the proper security key can gain access. 

Protect your laptop from theft

Don't leave your laptop unattended and use a cable lock when possible to prevent your laptop and data from disappearing.
 
©Copyright 2009 Viking IT - All Rights Resevered. Website Designed by Watters Edge Design