UN Advised on Wireless Insecurity

← Back to Stories (view on slashdot.org)

UN Advised on Wireless Insecurity

Posted by CowboyNeal on Saturday November 30, 2002 @04:26AM from the wireless-tapping dept.

otisaardvark writes "There's an article on the BBC about how the UN is being briefed on the problems of wireless networks. Predictable conclusions - security is mainly compromised through human, not technological factors."

4 of 81 comments (clear)

Min score:

Reason:

Sort:

The danger of defaults... by LostCluster · 2002-11-30 04:36 · Score: 5, Insightful

Whenever any product ships with pre-set default passwords or settings, there is always a segment of the population who will plug it in, see that it's working, and walk away. When a user plugs in a WiFi router, it should require the user to either turn on WEP, or make the user very aware that using the router in its default mode allows any other WiFi device that comes within range to connect, and that includes people who you might not want to let in.

Some people actually want to provide free bandwidth to the community, and I can't blame them for that. However, users need to know when they set themselves up with no security, that will be interpreted by the world as an open invitation for the public to come on in. If you want to block that, enable some sort of security.
Just human factors? by John+Fulmer · 2002-11-30 04:39 · Score: 5, Insightful

Last time I checked (and it's my job to) WEP and wireless security are still broken, as far as standards are concerned. 802.1x (PEAP, LEAP, whatever you want to call it) isn't appropriate in all (or even most, IMHO) situtations, and fixes to WEP like TKIP aren't widely deployed.

Wireless will continue to have security issues as long as the underlying security technology is broken and is hard to deploy in a secure, stable, and manageble fashion.

That's a technology factor in my book.
1. Re:Just human factors? by LostCluster · 2002-11-30 04:42 · Score: 5, Insightful
  
  Even a flawed security method works better than broadcasting every bit in the clear. Missed patches mean nothing when we can't even convince people to turn it on in the first place.
802.11b can never be secure. by skinfitz · 2002-11-30 04:40 · Score: 5, Insightful

Predictable conclusions - security is mainly compromised through human, not technological factors.

Presumably this is referring to the human failing that was responsible for the flaws in 802.11b design? 802.11b simply *cannot* be made secure. Beacon frames are not encrypted, MAC addresses are not encrypted. Capture approx 1Gb of network traffic and you can decrypt the WEP key. Once you do that, you are in. There is little difference between the time needed to crack 40bit and 128bit WEP keys.

Do not deploy an 802.11b network in an environment where you would not fix cabled LAN ports to the outside of your building with flashing neon signs pointing to them with "PLUG IN HERE!" written on them.

Roll on a truly secure standard.