New tools fight security flaws in wireless networking


How do you secure wireless LANs? By using wireless technology with enhanced encryption and security features. By using wireless network monitoring tools, you can locate and close holes, such as unauthorized access points and sources of interference or possible attacks.

What's the standard for secure wireless networking? There isn't one, per se. There's a specification for securing encryption modules ? NIST's FIPS-140-2. When the Federal Information Security Management Act takes full effect, this specification will become the bar for agencies' wireless networks to clear.

What's next? Look for more security, such as Bluetooth, to become a part of everyday security. Also, as the next generation of wireless LAN technology gets formal approval, better encryption schemes, such as Advanced Encryption Standard, will be built into devices.

The growth of wireless networking has brought some serious security concerns. Sometimes ubiquitous and easy access to data networks isn't a good thing.

Security protocols, such as Wired Equivalent Privacy that is used by IEEE 802.11b, help but have defects. For example, Wired Equivalent Privacy uses a flawed encryption system.

A new breed of hackers also is appearing. These hackers, known as war walkers and war drivers, wander around looking for an unsecured wireless network to connect to. Once connected, they map the network for future reference, use its bandwidth or perform some electronic snooping.

Another practice is war chalking, in which the hackers leave symbols, much like those used by hobos during the Great Depression, telling wireless wanderers where and how they can grab free bandwidth.

Many newer wireless products have fixed the problem by substituting another encryption technology, but managing wireless security is still a challenging task.

New tools are needed, including wireless-network sniffers that can seek out misconfigured or unauthorized wireless-access points, and software and hardware tools for providing better integration of user authentication with wireless systems used by hard-wired users.

Well-established federal standards help keep government networks secure. Among these is the National Institute of Standards and Technology's Federal Information Processing Standard publication 140-2, Security Requirements for Cryptographic Modules.

Many new wireless systems support enhanced encryption as well as authentication systems. So the number of systems certified as FIPS-140-2 compliant is bound to grow over the next year.

Even if you don't yet have a requirement for FIPS-140-2 compliance, it's time to start pushing it.
Kevin Jonah, a Maryland network manager, writes about computer technology.

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

What is your e-mail address?

My e-mail address is:

Do you have a password?

Forgot your password? Click here


contracts DB

Washington Technology Daily

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.