By Andrew Winthorp 

With many individuals and businesses connecting to the internet using wireless devices, and the reported cases of security breach and identity theft, having an awareness of wireless security measures to improve system security is a must. Many wireless users simply do not know that they are open and exposed to system penetration and bandwidth theft. Here are several suggestions to prevent your system from becoming a wireless hotspot.

(i) Change the password on your router. All routers come with preset service identifiers. Hackers are familiar with these protocols. You should change the password to something that is difficult to guess. Do not change the passwords to something as simple as myrouter which is easy to guess. You can rotate passwords frequently as an extra precaution.

(ii) Enable encryption. You should follow the encryption procedures provided by your routing device. WEP and WPA2 are the two preferred encryption measures with WPA2 the preferred and most up to date option. This technology encrypts traffic and scrambles it so that unauthorized third parties can’t make use of it throwing a spanner in the works for packet sniffers looking to procure sensitive details.

(iii) Keep a close check on remote access points. For companies that run web interfaces or remote system access points, security protocols should be established. Password access should be changed frequently.

(iv) Avoid using unsecured wireless hotspots in public locations. Malicious third parties frequently setup traps that are designed to route traffic through setups that are used to screen traffic with the intention of securing sensitive details.

(v) Always scrub all hardware that is sold or disposed of. This eliminates the chance that a third party can discover sensitive data or passwords that can be used for identity theft, financial crime or to gain access to corporate systems.

(vi) Use wireless security software. Whether you’re an individual or a corporation, this software has many benefits. A program such as Mcafee wireless home network security uses automatic security key rotation every three hours for encryption purposes. The software also secures your router and provides event logging and alert monitoring to scrutinize for terminals attempting to gain access. Institutions should consider more advanced software such a Manage Engine Wifi Manager.

Taking the time to plan and implement security measures prior to wireless use is the best way to protect yourself. A little extra time during setup is time well worth spent.

Andrew Winthorp owns and operates http://www.wireless-network-tutorials.com Wireless Network Tutorials – Learn more about key aspects of wireless setup and security.

Article Source: http://EzineArticles.com/?expert=Andrew_Winthorp

When you write your wireless security standards, make sure you don’t fall into the trap of including wireless LAN security myths in them.

George Ou has written extensively about wireless LAN security and he’s published several articles on common wireless LAN security myths in ZDNet over the years. His latest article, “Wireless LAN security myths that won’t die” can be found on his ZDNet blog here.

He categorizes the myths he debunks as follows:

Waste of money, resources, time

• MAC filtering
• Disable DHCP and use Static IP addresses
• Signal suppression with expensive paint or antenna placement

Worse than no wireless security at all

• LEAP (adding EAP-FAST to the list)
• SSID Access Point beacon suppression (or “hiding”)

Has nothing to do with security mechanisms

• Just use 802.11a or Bluetooth

Even if you’re not writing your wireless security standard, read George’s article and make sure you aren’t spreading myths and making yourself look dumb in front of others who know better!

The University of Connecticut has a great wireless security standards worksheet here.

It includes requirements for large deployments and small/individual deployments as well as requirements that are common for all deployments.

Here’s an excerpt:

Common Requirements

Please review the University Wireless Policy for policy related information.

Minimum Technical Requirements

• Locate APs on the interior of buildings instead of near exterior walls and windows as appropriate.
• Place APs in secured areas to prevent unauthorized physical access and user manipulation.
• Change the default service set Identifier (SSID).
• Ensure that AP channel selection utilizes the maximum amount of non overlapping channels for the given spectrum.
• Use WPA or greater encryption.
• APs shall not be plugged into network hubs.
• Ensure that all APs have strong administrative passwords.
• Use SNMPv3 and/or SSL/TLS for Web-based management of APs.
• Access points cannot interfere with any part of the central University wireless network
• When disposing of access points that will no longer be used, clear access point configuration to prevent disclosure of network configuration, keys, passwords, etc.

Here’s an archived copy of the standard: Wireless Security Standards

Great info! Check it out!