« Back to DataSecurityPolicies.com

Archive for the 'Wireless Security Standard' Category



6 Tips For Improving Wireless Network Security

By Andrew Winthorp 

With many individuals and businesses connecting to the internet using wireless devices, and the reported cases of security breach and identity theft, having an awareness of wireless security measures to improve system security is a must. Many wireless users simply do not know that they are open and exposed to system penetration and bandwidth theft. Here are several suggestions to prevent your system from becoming a wireless hotspot.

(i) Change the password on your router. All routers come with preset service identifiers. Hackers are familiar with these protocols. You should change the password to something

Read the rest of this entry »

October 25th, 2008 | Posted in Security Standards, Wireless Security Standard | No Comments

Before You Write Your Wireless Security Standards, Wireless LAN Security Myths You Need to Know

When you write your wireless security standards, make sure you don’t fall into the trap of including wireless LAN security myths in them.

George Ou has written extensively about wireless LAN security and he’s published several articles on common wireless LAN security myths in ZDNet over the years. His latest article, “Wireless LAN security myths that won’t die” can be found on his ZDNet blog here.

He categorizes the myths he debunks as follows:

Waste of money, resources, time

  • MAC filtering
  • Disable DHCP and use Static IP addresses
  • Signal suppression with expensive paint or antenna placement

Worse than no wireless security at all

  • LEAP (adding EAP-FAST to the list)
  • SSID Access Point beacon suppression (or “hiding”)

Has nothing to do with security mechanisms

  • Just use 802.11a or Bluetooth

Even if you’re not writing your wireless security standard, read George’s article and make sure you aren’t spreading myths and making yourself look dumb in front of others who know better! :)

November 8th, 2007 | Posted in Security Standards, Wireless Security Standard | No Comments

Wireless Security Standards

The University of Connecticut has a great wireless security standards worksheet here.

It includes requirements for large deployments and small/individual deployments as well as requirements that are common for all deployments.

Here’s an excerpt:

Common Requirements

Please review the University Wireless Policy for policy related information.

Minimum Technical Requirements

  • Locate APs on the interior of buildings instead of near exterior walls and windows as appropriate.
  • Place APs in secured areas to prevent unauthorized physical access and user manipulation.
  • Change the default service set Identifier (SSID).
  • Ensure that AP channel selection utilizes the maximum amount of non overlapping channels for the given spectrum.
  • Use WPA or greater encryption.
  • APs shall not be plugged into network hubs.
  • Ensure that all APs have strong administrative passwords.
  • Use SNMPv3 and/or SSL/TLS for Web-based management of APs.
  • Access points cannot interfere with any part of the central University wireless network
  • When disposing of access points that will no longer be used, clear access point configuration to prevent disclosure of network configuration, keys, passwords, etc.

Here’s an archived copy of the standard: Wireless Security Standards

Great info! Check it out!

November 6th, 2007 | Posted in Security Standards, Wireless Security Standard | No Comments