Networking

04:00 AM
Connect Directly
RSS
E-Mail
50%
50%

New Worries About WLAN Security

Wireless management frames are now being used to launch attacks.

Wireless LAN security continues to be a major thorn in the side of everyone who promotes, sells or installs WLANs. WEP (Wired Equivalent Privacy) is easily compromised with relatively simple tools, forcing vendors and IT managers to look elsewhere for encryption solutions. Likewise, there's no real standard for authentication. Yes, 802.1x may work eventually, but today it almost always requires the implementation of a proprietary authentication framework. And authorization, including the ability to assign granular levels of access rights once users attach to the network, is an afterthought (see our June 10 evaluation of WLAN security overlay products.)

Even if vendors address privacy, authentication and authorization services, your security headaches won't end. Other problems are looming, the most pernicious of which are DoS (denial of service) attacks. While DoS is a fact of life on all networks, it's worse on wireless networks because not only do you need to guard against attacks at Layer 2 and above, you're also extremely vulnerable to physical-layer attacks to the medium.

At a recent Defcon convention in Las Vegas, engineers from AirDefense (www.airdefense.net), a purveyor of intrusion-detection systems (IDSs) for WLANs, detected 807 attacks over the course of two hours. More than half the attacks were probes from tools like Netstumbler, which are used by hackers and administrators to detect vulnerabilities in WLAN environments. Another quarter of the attacks were identity thefts, including MAC (Media Access Control) address spoofing. But about 125 attacks represented more sophisticated threats unique to WLANs. These included RF jamming at the physical layer, attacks on specific stations that continually disconnected them from access points, rerouting of traffic through hostile stations, and a new set of attacks that use wireless management frames to launch attacks.

As WLANs become increasingly mainstream, we expect to see IDSs that address many facets of the problem. For IT managers, it's just one more issue that requires their diligent attention.

Comment  | 
Print  | 
More Insights
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
2014 Private Cloud Survey
2014 Private Cloud Survey
Respondents are on a roll: 53% brought their private clouds from concept to production in less than one year, and 60% ­extend their clouds across multiple datacenters. But expertise is scarce, with 51% saying acquiring skilled employees is a roadblock.
Video
Twitter Feed