Presentation is loading. Please wait.

Presentation is loading. Please wait.

PwC Making Wireless Networks Secure Computerworld 30 Nov 2004 Mark Vos.

Published byGriffin Barton Modified over 8 years ago

Similar presentations

Presentation on theme: "PwC Making Wireless Networks Secure Computerworld 30 Nov 2004 Mark Vos."— Presentation transcript:

1 PwC Making Wireless Networks Secure Computerworld 30 Nov 2004 Mark Vos

2 PwC 2 Agenda The Future Of Wireless Security Concerns Risk Management Approach Key Design and development initiatives Live Demonstration Session 1 Session 2 Intro

3 PwC 3 Future of Wireless Technology Most hardware based on 802.11b protocol (802.11g fast replacing “b”), but there are others (eg 802.11a) Uses Direct Sequence Spread Spectrum (DSSS) modulation at unlicensed 2.4 GHz band (i.e., same band as cordless phones, microwaves, other unlicensed use) Ethernet-to-wireless bridge (i.e., transmits all protocols, not just IP) Speed between 1 and 11 Mbps based on distance (“g” up to 54 Mbps) Features Plug-and-play DHCP client (LAN port) DHCP server (wireless port) Support for most operating systems and form factors Inexpensive and visually appealing (it is OK to have one at home) Pervasive (Dick Smith / Harvey Norman sell them) Convergence of VoIP and Wireless

4 PwC 4 Some thoughts on wireless Tagging (RFID) Value proposition E-tags require no line of sight to be interrogated. They can be read through nonmetallic substances, paint, grease or other obscuring materials. They do not require surfaces with smooth flat contours. Can support a longer read range than bar codes Can store more data than bar codes and data can be updated Commercial viability Already significant RFID usage in healthcare in US and Europe. Used to tag anything from patients to equipment to medicines. Passive RFID tags are forecast to exceed 800 million in 2004 (Gartner T-15-0102) Privacy considerations Small size makes RFID tags difficult to see May be used to monitor, track, and control individuals without their consent

5 PwC 5 Security Concerns Corporate Unauthorised APs with default settings on trusted part of the network Anybody can join Open networks Wireless sniffing (very easy) and weak WEP encryption All traditional hacker attacks work Business travelers and home users Joining Open networks (possibly involuntary) while connected over VPN Lack of personal firewalls or IDS (no longer behind corporate firewall) Weak default settings for home network (no WEP) Insecure computers due to OS (e.g., Windows 98) or physical access (kids can use computer and add hardware and software) Possible regulatory violations related to Privacy and Security Availability and Quality-of-Service (2.4 GHz band open to public) Network management headaches due to DHCP and NAT

6 PwC 6 War Driving War Driving is the term attached to finding rogue AP’s. All that is needed is a network card, laptop, and an antenna. Default and unprotected networks are often discovered. One War Driving excursion through Sydney found 500+ networks, with less then half secured. Do you know how many access points are on your network ?

7 PwC 7 Risk Management Approach Threats Vulnerabilities Likelihood Impact Risk X X = =

8 PwC 8 Key Design / Deployment Initiatives Education Home users Business travelers Design and deployment Policies and procedures must address technology Determine application requirements Review the size, location, and staffing level of the area to be covered Physical access – locate APs away from windows, outside walls, etc. Enforce higher network speed – higher speed means shorter distance Treat wireless LANs as untrusted and use traditional Internet technologies to secure Network segmentation Firewalls and Intrusion Detection, including for laptops VPN for sensitive applications Verify use of secure encryption (WEP, WPA, WPA-PSK, WPA2, 802.11i) Use of 802.11a

9 PwC 9 Key Design / Deployment Initiatives Enforcement and audit Identify all networks on all channels; investigate all unauthorized Access Points Verify Open vs. Closed network Verify use of secure encryption

10 PwC 10 802.11 Tools Net Stumbler Software that can find and identify wireless access points and level of encryption in use. Commonly used in War Driving to discover unauthorized access points Airsnort Software that can break WEP traffic while sniffing the network. The WEP algorithm was cracked by Rice intern at AT&T

11 PwC 11 Network Stumbler – Live Demo

12 PwC 12 Summary - Top 5 Mitigation Steps 1.Balance risk against cost of mitigation 2.Policies & Procedures must address technology 3.Determine business / application requirements 4.Treat wireless LAN’s as untrusted 5.Adopt the defense-in-depth principle

Download ppt "PwC Making Wireless Networks Secure Computerworld 30 Nov 2004 Mark Vos."

Similar presentations

Anatomy of an 802.11 Wi-Fi Enterprise Wireless LAN Chris De Herrera Pacific Crest Bank Chief Information Officer Webmaster, Tablet PC Talk, CEWindows.NET.

Anatomy of an Wi-Fi Enterprise Wireless LAN Chris De Herrera Pacific Crest Bank Chief Information Officer Webmaster, Tablet PC Talk, CEWindows.NET.
Rocket Software, Inc. Confidential James Storey General Manager, OSS Unit Rocket Software APNOMS 2003: Managing Pervasive Computing and Ubiquitous Communications.

Rocket Software, Inc. Confidential James Storey General Manager, OSS Unit Rocket Software APNOMS 2003: Managing Pervasive Computing and Ubiquitous Communications.
Chaper 11-Wireless LANS Wireless LAN Concepts Deploying WLANs

Chaper 11-Wireless LANS Wireless LAN Concepts Deploying WLANs
WiFi VS Cellular “Bringing Secure Payment to the Point Of Service”

WiFi VS Cellular “Bringing Secure Payment to the Point Of Service”
LANs and WANs. 2 Chapter Contents Section A: Network Building Blocks Section B: Wired Networks Section C: Wireless Networks Section D: Using LANs Section.

LANs and WANs. 2 Chapter Contents Section A: Network Building Blocks Section B: Wired Networks Section C: Wireless Networks Section D: Using LANs Section.
Wireless Networking TGIF, April 18th, 2003 Alvin Chew Kent Reuber

Wireless Networking TGIF, April 18th, 2003 Alvin Chew Kent Reuber
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Security in IEEE 802.11 wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.

Security in IEEE wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.
Simple ways to secure Wireless Computers Jay Ferron, ADMT, CISM, CISSP, MCSE, MCSBA, MCT, NSA-IAM, TCI.

Simple ways to secure Wireless Computers Jay Ferron, ADMT, CISM, CISSP, MCSE, MCSBA, MCT, NSA-IAM, TCI.
Northern Arizona University Wi-Fi 2005 Flagstaff Campus Wireless Plan 4/11/2005.

Northern Arizona University Wi-Fi 2005 Flagstaff Campus Wireless Plan 4/11/2005.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Wireless Security Ysabel Bravo Fall 2004 Montclair State University - NJ.

Wireless Security Ysabel Bravo Fall 2004 Montclair State University - NJ.
Wireless Networking (WLAN) Reina Trujillo Nathan Ekenberg.

Wireless Networking (WLAN) Reina Trujillo Nathan Ekenberg.
Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.

Wireless Security Issues Implementing a wireless LAN without compromising your network Marshall Breeding Director for Innovative Technologies and Research.
SIR Area 2 Computers & Technology Dean Steichen March 2012.

SIR Area 2 Computers & Technology Dean Steichen March 2012.
Demonstration of Wireless Insecurities Presented by: Jason Wylie, CISM, CISSP.

Demonstration of Wireless Insecurities Presented by: Jason Wylie, CISM, CISSP.
Wireless LANs Presented by: Jerome Thompson Mei-Lun Huang Liu-Yin Hu Kai-Wing Sum.

Wireless LANs Presented by: Jerome Thompson Mei-Lun Huang Liu-Yin Hu Kai-Wing Sum.
Securing a Wireless Network

Securing a Wireless Network
Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.

Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.
Agenda 10:00 11:00 Securing wireless networks 11:00 11:15 Break 11:15 12:00Patch Management in the Enterprise 12:00 1:00 Lunch 1:00 2:30 Network Isolation.

Agenda 10:00 11:00 Securing wireless networks 11:00 11:15 Break 11:15 12:00Patch Management in the Enterprise 12:00 1:00 Lunch 1:00 2:30 Network Isolation.

Similar presentations

Ads by Google