Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security By Nick von Dadelszen.

Published byPatrick Holt Modified over 9 years ago

Similar presentations

Presentation on theme: "Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security By Nick von Dadelszen."— Presentation transcript:

1 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security By Nick von Dadelszen

2 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security History 802.11b Standard –Three security options SSID MAC filtering WEP Easily Breakable –SSID Broadcasting –War-Driving –WEP cracking

3 Copyright Security-Assessment.com 2004 Security-Assessment.com Current Technologies 802.1X –RADIUS Authentication –Dynamic WEP encryption key distribution –Widely implemented by manufacturers late 2001 and 2002 WPA –Wi-Fi Protected Access –security standard (required for certification) –Solves WEP issues by utilising TKIP –Includes 802.1X authentication –Allow Pre-shared Key mode (PSK) that doesn’t require RADUIS (only considered slightly better than WEP) –Currently being implemented by manufacturers

4 Copyright Security-Assessment.com 2004 Security-Assessment.com The Future 802.11i –IEEE standard –Approved in July, starting to appear in the market –Includes WPA plus AES encryption –Still allows a shared-key mode WAPI –New standard produced by the Chinese government –Requires all Wi-Fi companies operating in China to comply with the standard –Requires international companies to partner with a local company to gain access to the standard (considered a national secret)

5 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security Issues Security is off by default Security is implemented poorly –Shared key modes, potentially less secure than WEP Reliance on security by obscurity –Disabling SSID broadcasting –MAC filtering

6 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Technology Issues People want wireless NOW! If you don’t implement it they will Wireless hotspots

7 Copyright Security-Assessment.com 2004 Security-Assessment.com Wellington WarDrive Kismet (802.11b) –232 Networks –142 unencrypted (includes hotspots) Netstumbler (802.11b/g) –161 Networks –91 unencrypted (includes 60 hotspots) 20% of networks still unencrypted (not including hotspots)

8 Copyright Security-Assessment.com 2004 Security-Assessment.com Wellington WarDrive

9 Copyright Security-Assessment.com 2004 Security-Assessment.com Distance Is Relative

10 Copyright Security-Assessment.com 2004 Security-Assessment.com HotSpot Issues Public wireless access –CafeNet –Telecom Wireless Hotspot Service No authentication of Access Point Users enter account credentials to access Internet Prone to Rogue APs and credential theft –Airsnarf

11 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Defenses Treat wireless networks as untrusted, like the Internet Rotate encryption keys Use strongest security available Can AP default admin user accounts Regularly search for rogue APs User hotspot education

12 Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Network Design

13 Copyright Security-Assessment.com 2004 Security-Assessment.com Other Technologies - Bluetooth Many phones now come with bluetooth More bluetooth devices than 802.11 devices All security is optional Most users don’t bother to secure their phones Bluetooth Wardriving!!!

14 Copyright Security-Assessment.com 2004 Security-Assessment.com Bluetooth WarDrive

15 Copyright Security-Assessment.com 2004 Security-Assessment.com Non-discoverable Phones Most bluetooth devices allow you to make them non- discoverable Do not broadcast Still able brute-force MAC address to connect Redfang tool does this for you

16 Copyright Security-Assessment.com 2004 Security-Assessment.com Bluetooth Attacks Bluesnarfing Backdooring Bluebugging Bluejacking

17 Copyright Security-Assessment.com 2004 Security-Assessment.com

Download ppt "Copyright Security-Assessment.com 2004 Security-Assessment.com Wireless Security By Nick von Dadelszen."

Similar presentations

Security+ All-In-One Edition Chapter 10 – Wireless Security

Security+ All-In-One Edition Chapter 10 – Wireless Security
Home Wireless Security David Mitchell 12/11/2007.

Home Wireless Security David Mitchell 12/11/2007.
Security in Wireless Networks Juan Camilo Quintero D. 1041718.

Security in Wireless Networks Juan Camilo Quintero D
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Security in IEEE 802.11 wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.

Security in IEEE wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.
Implementing Wireless LAN Security

Implementing Wireless LAN Security
Security+ Guide to Network Security Fundamentals, Third Edition

Security+ Guide to Network Security Fundamentals, Third Edition
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)

Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
Wireless Security Ysabel Bravo Fall 2004 Montclair State University - NJ.

Wireless Security Ysabel Bravo Fall 2004 Montclair State University - NJ.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 6 Wireless Network Security.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
Wireless Networking. Wi-Fi or 802.11 Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.

Wireless Networking. Wi-Fi or Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.
Wireless Insecurity.

Wireless Insecurity.
CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino

CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino
Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Similar presentations

Ads by Google