Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Federal WLANs Found To Be Insecure

Wireless LANs operated by many federal government agencies have security problems and the WLANs in the headquarters of six specific agencies have "significant security weaknesses," a Government Accounting Office (GAO) study released this week found.

"Federal agencies have not fully implemented key controls such as policies, practices and tools that would enable them to operate wireless networks securely," the GAO's report to the House of Representatives concluded. Specifically, the GAO pointed to severe security WLAN security problems in six unnamed agencies.

"We were able to detect wireless networks at each of the agencies from outside their facilities," the report said. "Wireless-enabled devices were operating with insecure configurations at all six of the agencies. For example, in one agency we found over 90 laptops that were not configured appropriately. Finally, there was unauthorized wireless activity at all of the agencies that had not been detected by their monitoring programs."

The unauthorized devices included access points and ad hoc networks in all six of the agencies.

"In all six agencies, we found wireless devices operating in ad hoc mode," the report said. "In over half of these cases the ad hoc networks could be detected outside of the building and could have provided access to the agency's networks."

  • 1