Enterprise Solutions for Wireless LAN Security
The threat to network security from improperly secured WLANs is a real and present danger for today's enterprises. The good news for enterprise managers is that there is a range of strong, vendor neutral solutions available today that addresses the vulnerabilities inherent with the original 802.11 security implementation known as WEP (Wired Equivalent Privacy). For protection against nontargeted attacks enterprises can use 802.1X-based authentication to provide a dynamic keying mechanism for WEP. At the other end of the spectrum, for protection against active, targeted attacks, IT can isolate the WLAN from the corporate network by use of firewall and Virtual Private Network (VPN) technologies.
Read the Article
|
Case Study: Implementing a Secure Wireless Network using WPA
Wireless network cards are becoming quite common at my company especially in notebook computers. With this proliferation of wireless network cards have come requests from the users of these computers to access the corporate network using a wireless connection. In 2001 and 2002 I implemented an 802.11b system on a limited scale for my company using Wireless Encryption Protocol (WEP) encryption as the sole security mechanism. Demand for wireless service has steadily increased since then, and in July of 2003 I was asked to implement a wireless network on a larger scale. I explained to the management team at my company the many shortcomings of the WEP encryption protocol, and they agreed that any upgrade of our wireless network should also include better security. It was also important to them that any upgrades integrate with our current network infrastructure.
Read the Article
|
Defense in Depth For Private Wireless Communications Networks: A Case Study
This paper will describe the steps taken by a manufacturer and integrator of private wireless communications systems to enhance the security of its radio network solution. A defense in depth approach improves the value of this vendor's offering and better enables emergency services agencies to defend their communications networks from the threats posed by electronic attacks. This paper examines the threats and vulnerabilities of private wireless communications infrastructures, discusses the selection and prioritization of security countermeasures, and describes the security enforcing equipment and security management services that are now being introduced.
Read the Article
|
Wireless Security Protection In a Logistic Environment Case Study
Our case study is based on a Logistic Company where they have implemented wireless LANs (WLANs) to all their Warehouse sites. Wireless mobile devices are able to open a session to their application for managing stock, receiving and shipping. This application was developed and based on an IBM Host environment. This is accessed using an industry standard terminal emulation called TN3270. This is a program designed to emulate an IBM 3270 terminal connected to a host or Physical Unit (PU) via IP link. The Company had decided to implement the Wireless IEEE 802.11b standard because it was the most extensive and cost effective technology in the market place. They decided to work with a specific TN3270 gateway product at every site. This gateway provides TN3270 sessions to the wireless devices. But the main surprise was, we found the wireless implementation at each location was with different vendors, NO specific vendor selected. Every site was connected to the Head or Central Office.
Read the Article
|
Wireless and Moneyless
Wireless networks have recently become a topic of much discussion. Employees enjoy the freedom and independence associated with wireless. An employee with a wireless enabled laptop has the freedom to move around the building with the same ability to access the network resources as he/she would have sitting at their desk. On the other hand, security personal have been reluctant to implement wireless networks because of the security concerns associated with them. These security concerns have been further perpetuated by the inexpensive cost and ease of installation. Many workers feel that if the IT Department and/or management will not provide wireless networks, the employees will buy there own. This attitude compromises the overall security of the corporate network.
Read the Article
|
Corporate Wireless LAN: Know the Risks and Best Practices to Mitigate them
In recent years, the hottest high tech trend which has received a lot of publicity and hype is the term Wireless LAN (WLAN). There are more and more organizations of all sizes implementing and using wireless networks or Wi-Fi (Wireless Fidelity) networks. This is due in part to its flexibility and mobility, ease of installations and lower implementation costs compared to installing wired cables throughout the organization's infrastructure.
Read the Article
|
Is IEEE 802.1X Ready for General Deployment?
Wireless LANs have been recognized as insecure for some time, especially for their lack of data confidentiality and access control. This paper examines the suitability of deploying IEEE 802.1X as the principal authentication mechanism for Colorado State University's wireless network. After careful consideration of wireless security issues and how 802.1X addresses those issues, it was decided that CSU should not incorporate 802.1X into its wireless network at this time. Two significant challenges facing wireless local area network (WLAN) designers and administrators are maintaining privacy and preventing unauthorized access. Network security is often said to be a compromise between convenience and protection. That it is especially true for a wireless network, as the convenience provided to roaming wireless users is facilitated by broadcasting packets to anyone with compatible equipment within range of a transmitting device.
Read the Article
|
IEEE 802.11
Overview and introduction to IEEE 802.11. Published in the Internet Protocol Journal. By Edgar Danielyan.
Read the Article
|
The Dilemma of PDA Security: An Overview
Personal Digital Assistants ("PDAs") are everywhere these days. There are many different manufacturers and styles of PDAs on the market. Typically they are some type of small, hand-held device that combines computing functions with telephone/fax and networking features. Even cellular phone companies have gotten into the act by combining hand-held computer technology with their existing products, which is one of the major reasons for the meteoric rise in the use of cellular phones. In fact, PDA technology is becoming so prevalent that industry analysts predict that by 2003, there will be more than one billion "smart devices" connected wirelessly, with more than half of that figure being web-enabled.
Read the Article
|
Mobile IPv6
The purpose of the paper is to familiarize you with the Mobile IPv6 standard, its use, and associated security concerns. The rapid growth in the number of wireless and handheld devices is putting a strain on the current IP protocol, version 4, which is not able to keep pace with the increasing demands brought about by the evolving Internet. This paper first briefly describes the need for a new Internet Protocol and the new version of IP, version 6, and its advantages. Then, mobility within IP networks will be explained and how the current IPv4 protocol was extended to include mobility, followed by how the new IPv6 protocol integrates mobility and its advantages. The status of IPv6 and Mobile IPv6 will be discussed, followed by a study of a popular new security mechanism for Mobile IPv6.
Read the Article
|
