More than likely, you and your employees use wireless networks, and are well aware of its many advantages. However, wireless networks are not as secure as wired networks. Protocols such as Wired Equivalent Privacy (WEP) and Wi-Fi Protected Access (WPA) have been developed with the intent to provide security to wireless users.
The current wireless protocols deal with two main security issues: access control and privacy. Access control is the ability to determine who is allowed to enter your network. Privacy deals with hiding information from hackers who may try to intercept information during transmission. WEP and WPA address these issues by providing password protection for access control and encryption for privacy. However, there are certain limitations with both of these protocols.
Wireless security protocol 802.11w is currently being developed to overcome some of the most up-to-date wireless security issues. When it is finally released in April 2008, 802.11w will be an improvement upon the current protocol, 802.11i. 802.11w is being designed to stop potential denial-of-service attacks as well as offer AES (Advanced Encryption Standard).
However, until the new protocol is released, here are several steps you can take to protect your business from wireless threats:
- Configure your wireless network to enable security options: Most networks are set up as default options that offer limited security. By customizing settings to enable all the security options offered, you can increase the amount of protection you currently have.
- Change default options and customize the network name: When you are in the process of setting up your business’ wireless network, it is important to change the default logins that are usually necessary for setting up access points and routers. This will help prevent hackers from guessing usernames and/or passwords. Additionally, access points and routers use the Service Set Identifier (SSID) and since manufacturers usually name all their SSIDs the same, you should customize the network name when configuring the network to prevent hackers from being able to guess your SSID.
- Enable WPA: WPA and WPA2 (the newest generation of WPA security) should be used to encrypt any wireless data that is transmitted and prohibit eavesdropping. WEP is older, and generally less effective than WPA. A strong password (at least eight characters, using both numbers and letters) should be used when this encryption is set up. If you or your employees are working remotely and are not on your business’ wireless network, it is important to enable WPA on your business’ remote computing devices.
- Configure and limit network access to your MAC List: You can selectively limit access to your business’ network by setting up the access point to only allow access to addresses on your Media Access Control (MAC) List.
- Set up a VPN: A VPN (Virtual Private Network) is an encrypted network that you can set up to allow your employees access to your business network from outside your company’s firewall. This allows remote workers more secure access to your business resources, and also ensures that communication is encrypted, thereby offering more protection if intercepted by hackers.
- Install antivirus and firewalls on all computing devices: You should have firewalls on each computing device to prevent hackers from gaining access. You should also install antivirus on each device as an additional layer of protection from viruses, worms, and other malicious email and IM threats.
- Strategically configure wireless access: The physical point from which your wireless signal is broadcast is known as the wireless access point. Place your access point away from windows and doors. If possible, try to choose a location in the center of the building, since the signal typically travels 200 to 300 feet and is significantly diminished by wood and metal structures. This strategy allows you to minimize the risk of people outside of your business intercepting the signal.
Wireless computing is part of the new wave of technological advances that is changing the way business is done. As more and more venues offer wireless capabilities and public areas such as city parks provide wireless access, business can be conducted almost anywhere. The protocols that have dealt with wireless security until now are no longer enough to deal with existing threats. By protecting each device that is wireless enabled and taking precautionary methods when setting up your business’ wireless network, you can use this technology more securely and help protect your business.
Technorati
Digg
Delicious
Reddit
Newsvine
StumbleUpon
Buzz
Blinklist
Mixx
Google
