Slashdot Mirror

← Back to Stories (view on slashdot.org)

Can Faraday Cages Tame Wi-Fi?

Posted by ryuzaki0 on from the heeya-heeya-back-wifi-back dept.

mrraven writes "An article at TechWorld discusses the increased need for wireless network security. One possible solution to this problem is the use of building-wide Faraday cages to block the wireless signal from 'leaking'." From the article: "Small installations of RF shielding don't have to be expensive, and the basic concept of a Faraday cage can be extended to all kinds of small everyday objects. Leather wallets sandwiched with a conductive RF-shielding layer can prevent RFID scanners from reading personal information implanted in everything from RFID-enabled access control cards to some credit cards; they're widely available for as little as US$15. For those favoring a more DIY route, several Web sites have information on how to make an RFID-blocking wallet with duct tape and aluminum foil."

16 of 145 comments (clear)

  1. The truth may be out there... by Cygfrydd · · Score: 5, Funny

    So this is essentially a giant tinfoil hat for your office? Will it stop the voices as well?

    1. Re:The truth may be out there... by Dachannien · · Score: 4, Informative

      Will it stop the voices as well?

      No, but it will keep the voices from using your neighbor's access point.

    2. Re:The truth may be out there... by arivanov · · Score: 5, Interesting

      It does not need to be a tin hat.

      Our office has IR tempered glass (which is quite common in "all-glass" buildings nowdays.

      Stops WiFi dead in its tracks. The signal drops by 20+db when going outside the building to the point where you can no longer home in with a normal receiver. Granted, this will not help against a professional attacker, but it is more then enough against random wardriving k1dd10tz.

      So if you have to chose between two buildings which are all-glass and glass windows + wall for a new office the all-glass is better as far as WiFi is concerned. Wardrivers aside, allocating channels without worrying about neighbours is quite a nice thing to have.

      --
      Baker's Law: Misery no longer loves company. Nowadays it insists on it
      http://www.sigsegv.cx/
  2. What about windows? by jdhutchins · · Score: 4, Insightful

    While adding a thin mesh around the building might not be hard to do at construction time, it seems the author has ignored windows. Most larger commercial buildings have large windows, which would need to be covered in a mesh in order to make the whole building a farady cage. This would obviously seriously impact the building's appearance, and I doubt would ever become practical. It's not that difficult to set up a WPA2 or VPN setup if you're concerned about keeping wifi secure.

    1. Re:What about windows? by zlogic · · Score: 5, Funny

      I totally agree with you. Until Windows is replaced with something more secure, the network can be easily accessible from outside.
      Oh wait...

    2. Re:What about windows? by Brett+Buck · · Score: 4, Informative

      Window shielding is a well-established technology. Note http://www.lessemf.com/plastic.html. This has been done for decades for secure facilities. There's nothing new about RF shielded/Faraday cage buildings.

                  Brett

    3. Re:What about windows? by DeadChobi · · Score: 4, Insightful

      Not to point out the obvious or anything, but it's also possible to set up an antenna on the inside which will repeat a signal to an antenna on the outside of a building. They do this in sports stadiums and various other places because of the lack of reception. The antenna doesn't repeat all frequencies, meaning that you can set it to repeat your crackberry's signal but not your ultra-secure Wifi signal.

      --
      SRSLY.
  3. UK defense system by legoburner · · Score: 5, Interesting

    BAE in the UK have made a wallpaper to do just this. No word on if it is available to consumers though I bet there is a market in the paranoid EM fearing folk that live near 'evil' cell phone masts.

    --
    Warhammer forums
  4. Faraday Cages will work by jmauro · · Score: 5, Informative

    Only if you don't want cell phone coverage or look out side. I work in a building that is EM sheilded using a Faraday cage. It was designed to test new radios so you didn't want outside signals coming in to mess up the test. Needless to say a all-metal no windowless office sucks. You have to go out side to make a cell call and when the AC breaks you're screwed because the place turns into an oven with no windows to open. It's a nice idea, but I doubt most wouldn't like to work in such a place 24-7. I sure don't.

    1. Re:Faraday Cages will work by JesseL · · Score: 5, Informative

      A wire screen tends to block EM with a wavlength greater than about twice the size of the holes in the mesh. Since the visible spectrum is in the few hundred nanometer range, and most RF communication happens at wavelengths over 5 centimeters, a screen is a very viable option.

      --
      "Prefiero morir de pie que vivir siempre arrodillado!"
  5. Leaky by QuantumFTL · · Score: 5, Interesting

    I'm sure this will help minimize effects of leakage, but no building can have a "perfect" faraday cage on standard wifi frequencies - the wavelengths are far smaller than the openings required for humans to enter and exit the building.

    Once again, it's probably better to focus on good encryption, though this is hardly much help to defeat certain on-site DOS attacks. Then again, that's what your security force is for :)

  6. Cell Phones by Soul-Burn666 · · Score: 4, Insightful

    After succeeding in preventing the wi-fi signal from "leaking", you are surprised your cellphone stopped working.

    --
    ^_^
  7. Oh, come on by happyemoticon · · Score: 5, Insightful

    The best wireless security solution is just to not use wireless. Yes, it's sexy. Yes, I know it can be a pain when there's a split in an ethernet cable that's in the rafters. Yes, I like to be able to use this laptop on the couch because it helps my creative energies get flowing. But seriously, if I were at all concerned about security, I'd just stick at CAT5E into the side and be done with it. Big wireless deployments are things for college students and people who like cafes. If I were running a business, I wouldn't throw money at a wireless project to begin with, let alone build an elaborate jamming/shielding system to correct problems which could've been avoided by not doing anything in the first place.

  8. Thank god we got rid of wires by Anonymous Coward · · Score: 5, Funny

    So we can replace the wires from each user to a building-wide mesh of wires.

  9. Have you ever actually used a Faraday cage? by Animats · · Score: 4, Informative

    Real Faraday cages are an unmitigated pain to deal with. The ones used for RF testing typically have a heavy door, like a walk-in refrigerator, with conductive fingers all around the doorframe that seal against the door. It's not enough to have metal; all the metal has to be connected. And slots will pass a wavelength up to the length of the slot.

    The ones used for high-security classified work are even worse. They're made of welded metal panels. They're a few feet off the ground, so the underside can be checked. Any I/O is fibre optic. Power goes in through huge low-pass filters. Air goes through metal mesh filters. Double doors work like an airlock, and there's a compressed-air system to force the RF-tight door seals. Periodic testing (transmitter inside, receiver outside) insures the tank is really RF-tight.

    Not a fun work environment.

    Painting the walls with conductive paint is a joke.

    There's nothing mysterious about any of this. RF propagation is well understood, and the test gear is easy to obtain. Ask any ham.

  10. Why does it have to be a physical? by DoubleRing · · Score: 5, Interesting

    There are so many ways of securing a wireless network without the messy business of placing a mesh wire around the building. The university in the town I live in has a campus wide wireless network. They then use a vpn system (cisco, I believe) to regulate access. Simply, anyone can connect to the wireless network, but you are given no access unless you connect to the university's vpn. Then from there, depending on that account's permissions, you can access the Internet and the university network permissions. I think this system is probably the best ideas because very little additional hardware is required, each account has a separate username/password combination (if the password is compromised, you only are dealing with a single user), and has the added bonus of being able to access the university resources from home. Plus, it works flawlessly with Linux.

    --
    Before you die, you see DoubleRing...