Upcoming Events

Executive conference

Cloud Connect March 16-18

Comprehensive thought leadership for executives, IT professionals and developers. Topics include: the ROI, cost and economics of on-demand computing; Migration strategies to move from on-premise to cloud-based IT; Vertical cloud specialization, tailoring features and architectures to specific applications, industries, and customer ecosystems

More Events »

Vendor Newsfeed

More Vendor Newsfeed »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

 
NetNews
N E W S / A N A L Y S I S  


New Worries About WLAN Security

  September 2, 2002
  By Dave Molta


Wireless LAN security continues to be a major thorn in the side of everyone who promotes, sells or installs WLANs. WEP (Wired Equivalent Privacy) is easily compromised with relatively simple tools, forcing vendors and IT managers to look elsewhere for encryption solutions. Likewise, there's no real standard for authentication. Yes, 802.1x may work eventually, but today it almost always requires the implementation of a proprietary authentication framework. And authorization, including the ability to assign granular levels of access rights once users attach to the network, is an afterthought (see our June 10 evaluation of WLAN security overlay products.)

Even if vendors address privacy, authentication and authorization services, your security headaches won't end. Other problems are looming, the most pernicious of which are DoS (denial of service) attacks. While DoS is a fact of life on all networks, it's worse on wireless networks because not only do you need to guard against attacks at Layer 2 and above, you're also extremely vulnerable to physical-layer attacks to the medium.

At a recent Defcon convention in Las Vegas, engineers from AirDefense (www.airdefense.net), a purveyor of intrusion-detection systems (IDSs) for WLANs, detected 807 attacks over the course of two hours. More than half the attacks were probes from tools like Netstumbler, which are used by hackers and administrators to detect vulnerabilities in WLAN environments. Another quarter of the attacks were identity thefts, including MAC (Media Access Control) address spoofing. But about 125 attacks represented more sophisticated threats unique to WLANs. These included RF jamming at the physical layer, attacks on specific stations that continually disconnected them from access points, rerouting of traffic through hostile stations, and a new set of attacks that use wireless management frames to launch attacks.

As WLANs become increasingly mainstream, we expect to see IDSs that address many facets of the problem. For IT managers, it's just one more issue that requires their diligent attention.


Best of the Web

Data deduplication: Declawing the clones

Data deduplication is emerging as a critically important new arrow in the storage administrator's quiver to answer hard questions about the increasing problem in storage growth costs.

Quick Read

Compression, Encryption, Deduplication, and Replication: Strange Bedfellows

One of the great ironies of storage technology is the inverse relationship between efficiency and security: Adding performance or reducing storage requirements almost always results in reducing the confidentiality, integrity, or availability of a system.

Quick Read

WAN Optimization Whitelists and Blacklists

Optimization is a fantastic way of saving money and creating really happy customers at the same time, but it doesn't work flawlessly for all applications.

Quick Read

WAN Optimization as a Managed Service: It's Not About the Cost

This insight examines how organizations outsourcing their WAN optimization initiatives to a third-party go about achieving their goals for application performance, reducing operational costs, and streamlining enterprise infrastructure.

Quick Read

  Sponsored Links

Premium Content

Next Generation Data Center, Delivered, November 17th
NWC


Salary

Video

View All Videos

Most Popular

Stories Blogs

More Stories »

Whitepapers

More »

BlogRoll