With Wi-Fi shaping up as the next must-have technology for business people out of the office, experts are warning that companies must get their wireless policies and security straight - or face the consequences.
Although companies are tightening the security of Windows-based servers, they face some unknown risks when corporate data takes to the streets. After all, wireless Internet connectivity on notebook computers and PDAs carries all of the risks seen within corporate walls, but the dangers are magnified when security is lacking.
Wireless technologies have spread quickly in recent years and are now widely deployed in corporate environments as well as at home. The human dependency on those technologies has increased to the point where one can find wireless devices almost everywhere, from network devices to laptops, cameras, and so on.
Though these devices support standard security options and protocols useful to thwart common attacks (ciphering, authentication, etc), many kinds of attacks are still possible but are dependant on the real level of security present and the skill of the attacker.
A couple of days ago the WI-FI Alliance finally announced that after almost one year of detailed testing, more than 175 products from some of the leading wireless manufacturers, received WPA certifications. The majority of wireless users won't immediately buy the new hardware, so they are stuck with the equipment they are currently using. The current state of wireless security is the topic of the book I'm taking a look at this time. Gilbert Held is an internationally known award-winning author and teacher with over 30 years in experience in managing communication networks.
Wi-Fi standards monitor the Wi-Fi Alliance yesterday said it will offer a second generation of its Wi-Fi Protected Access (WPA) security system later this year. It also announced that more than 175 products have been certified as compatible with the first version of WPA. Launched mid-2003, WPA provides a rather higher level of data security across wireless networks than Wired Equivalent Privacy (WEP), the security system incorporated into the 802.11b standard.
The security of wireless networks used by businesses in London has improved significantly over the last 12 months, says a survey.
RSA Security found that 66% of the networks surveyed use the encryption system built-in to the wi-fi standard to help them prevent unauthorised access. This is a big change since the last survey which found that only 37% had the security system turned on. Despite this improvement, RSA said many firms were still making basic mistakes on wireless security and were leaving themselves open to attack.
IT managers are catching up to the dangers of Wi-Fi, but opportunities for drive-by hackers in London may actually be increasing. New wireless LANs are popping up very fast and many of them are insecure "rogue" access points.
Burger King customers visiting a drive-through restaurant had to run a gamut of abuse after pranksters succeeded in hacking into the outlet's wireless intercom system.
Investigators believe teenage practical jokers are behind the insults delivered to Burger King customers at an outlet outside Troy, Michigan over the last fortnight.
Officer Gerry Scherlink told reporters that one customer was told "You don't need a couple of Whoppers. You are too fat. Pull ahead."
One of the few bright spots this year was the growth of Wi-Fi. But even as the wireless-networking technology drew praise for its potential, it became clear that it still had a lot left to prove.
As enterprises continue to invest in wireless devices and networks, IT specialists will be faced with the growing challenge of maintaining and improving the security of those networks.
