TPS Reports Presents… A Wireless Report Joy Gibbons Julia Grant Kelsie Kirkpatrick Kevin Moore Byron Williams Image from:

Agenda  Overview  Wireless Standards  Security Risks  How to fix security risks  How to install a wireless card  Wrap-Up

Overview  Wireless networks manipulate electrical charges in order to communicate between devices.  Wireless Networks use a type of electric current known as Radio Frequency (RF). Source: Wireless Security Primer 101

Wireless Standards  What are wireless standards? Agreements about how to communicate. Basically, this is what a network has to do to communicate to other networks. The original IEEE standard is a specification for wireless local area networks (WLANs) developed by the Institute of Electrical and Electronics Engineers (IEEE). There are several specifications in the family and new ones are occasionally added. gci341007,00.html

Wireless Standards  About Wireless Standards: Developed in 1989 Range of about 300 feet Many operate at 2.4 GHz range Transmit on Radio Frequencies rity_Primer_101.html

Wireless Standards  Outline of the current wireless standards Essentially, there is only one standard (802.11), it is constantly updated and revised by calling it names such as a, b, g, n, and so on. The a, b, and g amendments are the most popular techniques for over the air modulation that uses the same protocol as The i amendment is when security was included, and the other amendments (c-f, h-j, n) are all service enhancements or revisions. The n amendment is the newest standard, projected to be released in July

Wireless Standards  Regulations for Standards Wireless standards are regulated under Part 15 of the FCC Rules and Regulations. The frequency used by wireless standards b and g can be interrupted by microwave ovens and cordless telephones, for example. For this reason, a operates on a 5 GHz band in order to avoid this interference.

Comparing Wireless Standards StandardData RateSecurityPros/Cons & More Info IEEE Up to 2Mbps in the 2.4GHz band WEP & WPA This specification has been extended into b. IEEE a Up to 54Mbps in the 5GHz band WEP & WPA 8 available channels. Less potential for RF interference than b and g. Better than b at supporting multimedia voice, video and large-image applications in densely populated user environments. (Wi-Fi) IEEE b Up to 11Mbps in the 2.4GHz band WEP & WPA Requires fewer access points than a for coverage of large areas. Offers high-speed access to data at up to 300 feet from base station. 14 channels available in the 2.4GHz band. (Wi-Fi) IEEE g Up to 54Mbps in the 2.4GHz band WEP & WPA May replace b. Improved security enhancements over Compatible with b. 14 channels available in the 2.4GHz band. (Wi-Fi)

Future of Wireless Standards n: “January 2004 IEEE announced that it had formed a new Task Group (TGn) to develop a new amendment to the standard for wireless local-area networks. The real data throughput is estimated to reach a theoretical 540 Mbit/s (which may require an even higher raw data rate at the physical layer), and should be up to 100 times faster than b, and well over 10 times faster than a or g. It is projected that n will also offer a better operating distance than current networks.” Release DateOp. FrequencyData Rate (Typ)Data Rate (Max)Range (Indoor) 2007 July? ? ?540 Mbit/s ?

Security Risks  How does security in wireless technology affect the Accounting world?  What are Security Risks for wireless technology?  How does a company combat security risks?

Security Risks  Accidental Association  Identity Theft or MAC Spoofing  Ad-Hoc Networks  Man-in-the-Middle Image from:

Security Methods to Counter Risks  MAC ID filtering  Static Dynamic Host Configuration Protocol (DHCP)  Wired Equivalent Privacy (WEP)  Wi-Fi Protected Access (WPA)  Lightweight Extensible Authentication Protocol (LEAP)  Protected Extensible Authentication Protocol (PEAP)  Temporal Key Integrity Protocol (TKIP)  Remote Authentication Dial In User Service (RADIUS)  And many others…

DHCP and PEAP  Uses pre-assigned addresses for each MAC ID and is quite helpful by keeping non-authorized users away from AP’s.  PEAP gives a secure transfer of data, passwords, and encryption keys Source:

WEP  Was the original encryption standard for wireless to be as safe as wired networks  “Secure” wireless network has never been achieved through a WEP because of flaws and the abilities of crackers to crack codes  TKIP helps avoid WEP problems with Source:

WPA  Uses a pre-shared key which establishes security by using a 8 to 63 character passphrase, or a 64 character hexadecimal  Updated version is known as WPA2, which includes the final IEE802.11i standard that includes a different algorithm Source:

RADIUS  Authentication, authorization, and accounting protocol used for remote network access  Most important function for accountants because is enforces user policies and restrictions and also records accounting information Source:

Securing a Wireless Network  Enable and configure WEP  Secure service set identifier (SSID) by changing the default SSID to a unique ID and changing it at frequent intervals.  Change passwords often Source: Wireless Security Primer Part I

Securing a Wireless Network  Change AP position. To do this run an important site survey to locate problems and only cover areas that are in need of coverage.  Use MAC filtering to grant access to those with an acceptable MAC ID.  Use RADIUS to maintain user profiles in a central database that all devices can share and use. Source: Wireless Security Primer Part I

Video for Wireless

Wrap-Up  The main takeaways: Wireless standards make it possible to transmit data without hardwires. Since wireless is relatively new, there are many security risks. Most of these risks can be combated through certain loopholes. USB Wireless Adapters are the most versatile. If you need assistance, ask your IT Department.

Thank you!  Any Questions? Ask your nearest Byron…. Image from: