Researchers Test WiFi Access From Moving Vehicles

Julie188 writes "Researchers from Microsoft and the University of Massachusetts have been working on a technology that would let mobile phones and other 3G devices automatically switch to public WiFi even while the device is traveling in a vehicle. The technology is dubbed Wiffler and earlier this year its creators took it for a test drive with some interesting results. Although the researchers determined that a reliable public WiFi hotspot would be available to their test vehicles only 11% of the time, the Wiffler protocol was able to offload almost 50% of the data from 3G to WiFi."

call it what it is

[Thud457]

I prefer the OSS term for this technology, "autoleech".

Re:call it what it is

[WrongSizeGlass]

I thought this was called "How Google Got In Trouble (aka 'HoGGIT')"

Re:call it what it is

[Hylandr]

How many times do I have to tell you, it's HOGGLE!

- Dan.

Re:call it what it is

[thousandinone]

HOw Google Got Legally Ensnared?

Re:call it what it is

[DruidFyr]

How many times do I have to tell you, it's HOGGLE! - Dan.

The real scary part of your reply is how many of us got the reference!
So, which one are you a fan of:

1. Jim Hensen/Muppets
2. David Bowie
3. The Movie "Labrinth"

or all of the above?

Re:call it what it is

[Hylandr]

How many times do I have to tell you, it's HOGGLE! - Dan.

The real scary part of your reply is how many of us got the reference! So, which one are you a fan of:

1. Jim Hensen/Muppets
2. David Bowie
3. The Movie "Labrinth"

or all of the above?

1 - Statler and Waldorf Ruled!
2 - I am just glad he changed his name from Ziggy Stardust!
3 - SMELL BAD!! - And that's Labyrinth Tyvm :)


In my defense, I think I was 14 at the time it came out. :)

- Dan.

Re:call it what it is

I wrote Hoggle you insensitive clod!

Researched this myself

[TrisexualPuppy]

The multipath and doppler effects SUCK. This is why Wimax doesn't work well in vehicles and why the Mobile Wimax variant is more popular in such realms.

But once you have the physical layer taken care of, you can play cool little tricks like data queuing for WAPs to save cost. Locational awareness is also feasible to anticipate whether there will be a hotspot in a quarter of a mile or to go ahead with the transfer now.

Re:Researched this myself

The multipath and doppler effects SUCK. This is why Wimax doesn't work well in vehicles and why the Mobile Wimax variant is more popular in such realms.

The doppler problem is by far the more important one. WiFi is based on an OFDM modulation that takes advantage of the mathematical orthogonality of zillions (technical term) of low bitrate channels with respect to a given Fourier transform window. When the source or receiver is moving, the frequencies shift in a way that destroys their orthogonality with respect to that window and causes crosstalk between the channels. It doesn't just degrade performance, it pretty much obliterates it.

Re:Researched this myself

You also have fading that is a function of frequency and vehicle speed. See Rayleigh Fading .

not gonna work

[alex_guy_CA]

I had my phone setup to auto connect to wifi, but there is a lot of wifi out there that looks open and free to my phone, only it takes you to a page where you have to log in. Peets coffe, most hotels.

When I hit one of these, it sort of grinds everything to a halt, as the phone thinks it has a wi-fi connection but does not.

Re:not gonna work

There really needs to be a standard way for an access point to say "I have no wireless authentication, but I am not open" when advertising itself, to allow devices to respond appropriately.

Re:not gonna work

[choongiri]

Right, so you make the technology smart. It connects to the unsecured wireless network, attempts to make outgoing connections, and if the outgoing connection fails (or is redirected to a login page), switches to another network. You could quite easily test the connection in the background before attempting to pass application data to it.

Re:not gonna work

Or your device could test to connect to a few(2-3?) sites/places on the net. If all of them fails it's tries to connect to these places via another wifi hotspot or via gprs/3g/whatever.

Re:not gonna work

[hedwards]

Traditionally, the way you did that was type in a very weak password. Like 1234, but really, if you haven't got any wireless authentication, you're open, whether you like it or not. The difference between open and closed is whether or not the public has access.

This is a bit like posting a sign that says "please no trespassing, we're not going to call the cops, but we don't want to have to see you trespassing."

Re:not gonna work

The problem with that approach is that it takes a long time, so it isn't suitable for mobile applications (not even if you're just walking). First you have to scan the available frequencies for beacon frames, then you have to send a frame to associate, then you have to receive an acknowledgment, then you have to send a DHCP broadcast, then the DHCP server has to give you an IP address, then you have to send a ping (echo request) to a host on the internet, then you have to get an echo reply back and only then can you start using your application protocol. If at any step you don't get a response (how long do you wait?), you can either retry or restart the whole process (including rescanning, because you may have moved out of range of a previously promising open network).

Grandparent is right: There needs to be a standard way for wireless access points to declare automatic public internet access. Furthermore, the handshakes (association and address negotiation) should be reduced or eliminated.

Re:not gonna work

[choongiri]

This whole tech, though, is designed for applications where slight delays in sending the data don't matter. It's about offloading 3G usage onto wifi where possible. Every step you mentioned has to happen anyway, and a ping takes what, an extra 50ms? Could it be done more efficiently if you were building up a system from scratch? Sure, but this is about offloading data use onto existing networks.

Re:not gonna work

[Sockatume]

Not if the router's set up in such a way that you have to log in/purchase time on a web form before it'll actually let your IP address talk to the internet as a whole, which is the problem in question.

Re:not gonna work

[cynyr]

I think the idea was more "i'm a no auth AP but do not provide internet, if you need that skip me".... not a no trespassing sign, but more of a "there is not an interesting view down this path"

Re:not gonna work

[GameboyRMH]

Exactly, a simple shellscript doing a little wget and grep action could tell you whether you can really get online or not. I don't run into many paywalled APs, but if I did I'd set up one of my phone's custom desktop widgets to check connectivity when clicked.

If you want to automate it, the only part that would involve some work is tying that into your OS' network connectivity management.

Re:not gonna work

[GameboyRMH]

More like a drinking fountain in the middle of an open lot that looks like it has water flowing in it, but when you get close, it turns out it was just a fake stream of water made of glass.

Re:not gonna work

[treeves]

I would think that it would be a problem even if there is no log-in page, that by the time you've connected to the network, in a fast moving vehicle, you're already out of range. Wi-Fi range is much less than cell tower range, isn't it?

Define "Public"

[Dancindan84]

There's been a fair number of stories recently of people getting in trouble for "stealing" bandwidth from unsecured wireless routers, and not just when using it for illegal purposes. I don't agree with this. I think it should be the owners responsibility to secure their network, but the possibility for legal ramifications exists.

Re:Define "Public"

[Dancindan84]

References to the situation I described:
http://news.bbc.co.uk/2/hi/6960304.stm
http://www.techdirt.com/articles/20070116/115327.shtml

Re:Define "Public"

[gstoddart]

I don't agree with this. I think it should be the owners responsibility to secure their network, but the possibility for legal ramifications exists.

So, if I have an electrical outlet outside of my house and I don't "secure it", should people be able to plug into my electricity with impunity? How about my garden hose? If I don't physically bar someone from parking in my driveway, that's OK? Is it OK to help yourself to my garden? How about siphoning the gas out of my car?

There's loads of things in the physical world that aren't necessarily secured, but that you don't have a reasonable expectation of being able to use.

I don't agree in any way that just because the wireless isn't 100% locked down that you should get a free pass to just use it. You know you're using a network that isn't yours -- just because you can connect to it doesn't mean you have carte blanch.

Re:Define "Public"

[hitmark]

electricity (or the fuel driving the turbine at least) can be used up. Bandwidth can only be saturated.

Re:Define "Public"

[Abcd1234]

You're running under the assumption that the home owner has an unmetered broadband connection.

Re:Define "Public"

[rotide]

I see where you're going with that line of thinking and I agree to an extent. However, all of those analogies require you to physically go out and take/plug in/steal something that clearly isn't yours and shouldn't be.

Logging onto an unsecured WiFi connection can be done incredibly easy while I'm in my pajamas in the middle of a blizzard. It can also be done innocently and unknowingly. "Wait, there are 4 "linksys" networks, which was mine again?".

While I don't agree with torrenting or otherwise saturating someones connection, leaving it wide open and then being pissed when someone logs onto it is almost as ridiculous as yelling to your neighbor across the street and getting mad when another neighbors listens in and potentially adds their two cents. If you're not going to take the time to secure your broadcast transmissions, don't get pissed at those who listen/use it.

Re:Define "Public"

[Dancindan84]

All of the things you've described have 2 things that make them very different from using unsecured wireless:

1. All of those things you've described require someone to trespass on your properly to get access to. Wireless could be available from as far away as across the street or in a completely different building.
2. It's very easy to secure a wireless network, whereas securing those physical things would be rather awkward.
3. There's no easy way to know if the network is public, or someone's private unsecured network. Sometimes it's obvious, but often it isn't.

• Last year when I went to Myrtle Beach for a vacation, the beach had public wifi set up for anyone to use. There were also some private wifi from the nearby condos that were unsecured. If I hadn't been told about the public wifi on the beach by the condo company I rented from, I wouldn't have known which was which. The SIDs weren't named to be obviously private or public.)

Re:Define "Public"

[geekoid]

I anm was arrested. Big deal. Arrest isn't conviction, and regarding the Singapore lad, it's in Singapore. Not exactly number one for human rights.

Re:Define "Public"

[Dancindan84]

http://www.google.ca/search?q=arrested+stealing+unsecured+wifi First page has articles about people in Michigan, Florida and over in England. The Singapore example was just the first one I found.

Re:Define "Public"

[bigstrat2003]

So that's three things.

(On each hand. So, six things total.)

Re:Define "Public"

[Dancindan84]

Haha, whoops. Thought of another while I was writing and forgot to num++ in my first paragraph.

Re:Define "Public"

[Idbar]

Public as in Free Public WiFi? Perhaps it's not going to work quite well.

Re:Define "Public"

[chill]

And if you leave your front porch light on, should I be able to stand on the public sidewalk and read by it?

Or, if you leave your blinds open and your big screen T.V. on, should I be able to stand on the public sidewalk and watch?

Your cases are different because there are per-usage charges for the items you mention: water and electricity. If you paid a flat-rate for either, regardless of usage, it would be an interesting question. Especially because neither of them are "yours", you are just paying for usage from a utility.

A different case for your driveway, garden or gasoline. They are finite resources that use by another deprives your of their use. That is one of the basic issues behind theft.

Internet bandwidth, if used such that it didn't interfere with your usage, is a different animal. As long as you aren't saturating it, you aren't suffering a loss either of money or resource. With out a loss of product or service, how can you justify calling it a crime?

Re:Define "Public"

[bigstrat2003]

That's OK. It gave me the delightful opportunity to decide whether to make a Spanish Inquisition joke or a Penny Arcade joke. ;)

Re:Define "Public"

[gstoddart]

Logging onto an unsecured WiFi connection can be done incredibly easy while I'm in my pajamas in the middle of a blizzard. It can also be done innocently and unknowingly. "Wait, there are 4 "linksys" networks, which was mine again?".

*laugh* For one, there is no "it was so easy I did it in my underpants" defense. Ease doesn't equate with right -- stealing candy from babies is trivial, for instance. ;-)

There's also a huge difference between inadvertently using the wrong wifi, and intentionally looking for unsecured wifi.

Sadly, wifi routers are so cheap and easy to get, that lots of people just fire it up, go through the setup wizard, and never think of it again.

For much of the consumer public, these things are treated like toasters. Turn 'em on and go. They just don't realize there's more to it. The availability of the tech has outstripped the knowledge of the people using it.

Right or wrong, these have become consumer devices used as black boxes -- the companies making them should make them a little more secure, and try to steer you into having some protections on it -- having them all have the same SSID and passwords is bad. Unfortunately, that would likely lead to more support issues for them as people call and say "teh wireless doesn't work" as people get lost in the instructions or lose their passwords.

Re:Define "Public"

[kent_eh]

Would people be able to access your utilities without physically trespassing on your property?
Would someone be able to use your garden hose without leaving the comfort of their own home?

But then, does it cause you grief if someone on the sidewalk is listening to the music you are playing even though you paid (presumably) for the CD, and they are simply freeloading? You could turn it down or close the window (secure it from prying ears)

Re:Define "Public"

[gstoddart]

Your cases are different because there are per-usage charges for the items you mention

My internet is charged and metered. If I go beyond a certain amount, I pay for it. So, it's not a flat-rate, infinite supply scenario. Until my ISP stops telling me that bandwidth is finite and metered, it remains so.

Now, my wifi is locked down, but I just don't think your argument about bandwidth holds water. I would argue for most people, their internet connection is far from being an un-metered, infinite service.

With out a loss of product or service, how can you justify calling it a crime?

By trying not to allow myself an overly elastic definition of such things and constructing a narrow argument in which you could argue that it's not a problem.

It's unauthorized access to someone's network. You don't have explicit permission, and you're arguing that you either have implicit permission, or that no harm is being done -- I disagree with both.

Do I think people should learn to lock down their wifi? Absolutely. Do I think you should be able to use any wifi which isn't locked down? Absolutely not.

Re:Define "Public"

[rotide]

The only point we're going to agree on seems to be more responsibility from the manufacturers. Personally, I'd like to see the radios turned off by default and you have to go through a little wizard to get them turned on. This would force those who purchase them to choose to offer it to the public, or to secure it. Because, really, you need to take responsibility for your own actions through what you do and what you setup in and around your residence. If you setup an AP that is wide open, well, frankly, in this world of "free wireless here!" you can't expect people to _not_ try to find free WiFi.

Re:Define "Public"

[camcorder]

And what gives you the right to spread radio waves in my home? I don't think connecting to an unprotected wireless network is criminal issue as in your analogies, but an ethical issue.

Re:Define "Public"

[hedwards]

In the US, they typically are. Even the ones that do are capped at 250gb which would be hard to max out with WiFi. I've been able to hit that a few times with a wired connection, but doing that over wireless would be tough. Fortunately, the one saving grace of Qwest is that they really don't have a cap.

Re:Define "Public"

[natehoy]

So, if I have an electrical outlet outside of my house and I don't "secure it", should people be able to plug into my electricity with impunity?

No. But, as has been stated before, that analogy is flawed.

If you plugged a bright orange extension cord into your outlet, ran it down onto the sidewalk, and attached a 4-foot-high sign that said "FREE ELECTRICITY - PLEASE HELP YOURSELF" could you then call the cops when someone plugged in to the outlet? They are on a public space, using a resource you've advertised as available for public use.

That's how routers are designed. You can configure them so that the public can use them. Or you can configure them so they tell people that the signal is not for public use. These are clear and easy settings on the router that allow you, as the router's owner, to indicate to others whether that signal is for public use or not. If you've configured them to broadcast the availability of a freely-available connection and you've allowed that signal to intrude on a public space, then how am I to tell you didn't want my phone to use it as I'm driving by?

If you don't want people to use it, it's a trivial matter to configure your router to stop inviting people to use it. Turn off SSID. Lower the signal strength so it stays on your own property and out of public spaces. Implement WEP or WPA.

If someone then intrudes on your property or attempts to hack your network after you've indicated that you don't want it used, I'll be right alongside you supporting charging the assholes with trespassing or some other crime, and put some teeth into enforcement.

But you have to take the first step. If you insist on intruding on public spaces with your open signal, you really have no right to complain if someone uses it. Unless, of course, you've successfully petitioned the FCC and hold a license for exclusive use of that channel in your vicinity. Good luck with that.

The nice side effect to taking the 5 minutes to enable WPA2 is that you are also protected from snoops, because the data is no longer sent out "in the clear" for anyone in the vicinity to intercept.

Are you really comfortable with anyone with a Pringles can and a netbook being able to record your email password? Is saving the 5 minutes to secure your network really that important to you, that you expect the rest of the world to understand that "yes means no if I say it" and you're willing to take security risks with all the data you send over that channel on an annual basis.

Hell, you could have secured your network in less time than it took you to type your post, and solved the problem yourself rather than expecting the rest of the world to do it for you.

Re:Define "Public"

[gstoddart]

Would people be able to access your utilities without physically trespassing on your property?
Would someone be able to use your garden hose without leaving the comfort of their own home?

I merely make a counter-point to that argument that if the owner hasn't made steps to secure it, you get to use the resource with impunity. A point for discussion, not an absolutely final statement. I tend not to believe in black and white situations, and exploring the gray is often more interesting.

Sometimes, things which are fairly cut and dry in the "real world" get somewhat muddy when you add "with a computer". Some of these things tend to be a little more nuanced than most people's immediate reaction of "you haven't stopped me, so you've given me permission". In this case, I'm not convinced that failure to secure it is open permission. There are reasons why courts sometimes struggle to properly apply case law to these things -- because the analogies to real world things get muddied, and you get new corner cases. Precisely because you can't always use the same reasoning in the same way.

But then, does it cause you grief if someone on the sidewalk is listening to the music you are playing even though you paid (presumably) for the CD, and they are simply freeloading?

Me, personally? I don't care at all -- except to make sure I'm not annoying my neighbors.

However, someone like the RIAA could (and I believe has) make the argument that my stereo then becomes a public performance and that they're owed royalties.

At which point, you standing on the sidewalk affects my legal situation, and I do care. Much like someone might care if, say, you were using their wifi as a shield to do something illegal like download kiddie porn or plan a terrorist attack.

I wouldn't want to see someone's grandmother charged because she didn't know enough to prevent someone from using her wireless for illegal purposes. All she wanted to do was log into her laptop to see pictures of her grandchild.

Generally, I fall on the side of saying that if you don't have explicit permission, you're treading on unlawfully accessing someone's computer system. If you do anything illegal, you've gone ever further into unsupportable activity. If you "borrow" a couple of gigs of bandwidth and cost them money, you're in full on theft of service the same as if you spliced their powerline.

Re:Define "Public"

[mcgrew]

I think it should be the owners responsibility to secure their network

Secure the computers, leave internet access unfettered. If I see an unsecured access point my assumption is that the owner isn't a selfish hog and doesn't mind sharing his bandwidth.

Re:Define "Public"

[gparent]

Logging onto an unsecured WiFi connection can be done incredibly easy while I'm in my pajamas in the middle of a blizzard. It can also be done innocently and unknowingly. "Wait, there are 4 "linksys" networks, which was mine again?".

*laugh* For one, there is no "it was so easy I did it in my underpants" defense. Ease doesn't equate with right -- stealing candy from babies is trivial, for instance. ;-)

The difference is that you do not begin automatically stealing candy from babies as you walk around them. The argument is perfectly fine.

Re:Define "Public"

[hedwards]

If you've failed to set up any authentication you've given everybody permission to use it. You set up authentication so that you limit who is and is not allowed to use it. That's the way that authentication works, an open or blank password is the same thing as granting permission to whomever it is that wants to log in. That's the reason why people use blank passwords. If you care who it is that logs in you don't use a blank password.

Re:Define "Public"

[tophermeyer]

Or, if you leave your blinds open and your big screen T.V. on, should I be able to stand on the public sidewalk and watch?

Well that is a special case, there might be local laws regarding peering into open windows.

But I think your point is valid. If I leave my wireless unsecured and it is spilling outside my house such that someone on the street can connect to the network, I can't really claim anyone is stealing my wireless. I made it accessible to the public. If I left a bowl of candy sitting on my front step, I'm not going to get angry at kids for stealing my candy.

Re:Define "Public"

Are you broadcasting the electricity? Is there a signal going out from your meter saying "gstoddart power here, use me"? If you run your hose into my yard am I supposed to not use your water? Maybe I cannot park in your driveway, but what about on the street in front of the house? I may not enter your garden, but if you leave fruit in the street unattended whose is it? I may not take gas from your car, but what about if you leave a gas can on the street with a sign saying "gas here, open access"?

Re:Define "Public"

[chill]

Interesting. Standard setup in the U.S., from major Cable/DSL/Fiber ISPs is a flat-rate, unmetered connection that is limited by data rate (and ISP whim). Short of a satellite or cellphone connection, I can't remember the last time I saw a metered connection offered.

With an open WiFi connection -- the only type I'm discussing -- you're walking a fine line with your definition. The problem is many systems are set up out-of-the-box to connect to any open wifi link in range. It makes life easier for tech support. The WAP broadcasts beacons and announcements into the public space, and any auto-connect would technically constitute accessing someone's network without explicit permission. Hell, my phone will auto-switch from 3G to wifi if available for and data access. I might not even notice which it is on when I use it to get e-mail or browse the web. I have an unmetered data plan on my phone, so don't pay it any attention.

So, yes. I'm arguing that the nature of open wifi accessible from public space gives implicit permission. This is why government and many corporate networks have login screens with dire warnings saying you must have EXPLICIT permission to access.

From a technical standpoint, this will soon be moot. Just about every WAP sold recently now comes with one of those "push button to secure network" features, making it brain-dead to lock your network.

Re:Define "Public"

[Coren22]

The last couple wifi routers I have bought have been setup in this way, or with a very complex key that you can change if you like, but have to have physical access to see.

Re:Define "Public"

[barzok]

Or, if you leave your blinds open and your big screen T.V. on, should I be able to stand on the public sidewalk and watch?

At least until the NFL catches wind of it and drops lawyers on you for a public showing of their broadcast without express written consent.

Re:Define "Public"

[gstoddart]

The only point we're going to agree on seems to be more responsibility from the manufacturers.

And, it's important to note that I'm not disagreeing with you per se ... I'm merely advocating for a different position than you. You make some good points, I just don't think it's a binary issue. I think it's far more complex -- categorical statements in most endeavors (I will refrain from saying "all" ;-) aren't really helpful.

Because, really, you need to take responsibility for your own actions through what you do and what you setup in and around your residence. If you setup an AP that is wide open, well, frankly, in this world of "free wireless here!" you can't expect people to _not_ try to find free WiFi.

This is a general issue I see -- the technology has moved along and become widespread faster than the general knowledge of it. So, it becomes a societal issue to try to sort out some of these details. Much like governments don't always do a good job of legislating on technical issues.

On the one hand, we hand these things out like candy and make it "easy" to use. On the other hand, people don't necessarily understand what it is or the ramifications of not using it "safely". Which is why you have an entire generation who isn't aware of the stuff they shouldn't be putting on-line or don't see any problems with posting naked pictures of themselves when they're teenagers.

People in tech rant and drool and say that consumers should be forced to understand what they're using. I point out that if you let anybody use these things, then someone needs to ponder what happens to the people who just innocently use these things an have no idea.

The elitist "l3t the n00bs get pwn3d" point of view doesn't actually help anything, and it forgets that much of the people using these things need to be educated, protected, or both.

As a general policy, I try to see as many sides of the same issue as I can ... it avoids developing tunnel vision.

Re:Define "Public"

[mcgrew]

Your electrical outlet is on your property; using it is tresspassing. Youe wifi signal is on MY propery. If you plug an extension cord into that outlet and toss the other end in my yard, I'm going to assume you have a flat fee for electricity and don't mind sharing it with me.

Re:Define "Public"

[einhverfr]

Personally, I'd like to see the radios turned off by default and you have to go through a little wizard to get them turned on.

The problem is that most of these use hard-coded IP addresses. If you run DHCP on your network, turning off the radio means you really have to plug the thing into a dedicated network connection to configure it.

Wouldn't it be easier (though slightly more risky) and still within acceptable risk to turn off the ethernet port until it is configured?

Moreover most of the wizards are Windows-only. I don't want to have to start researching which wireless systems I can use on my linux-only network.

Re:Define "Public"

[CastrTroy]

Most ISPs have stopped selling unlimited broadband. There's almost always a cap. Personally I only have a 25 GB cap, because it's cheaper and I almost never need more than that. Now if someone was leeching off my internet, they could easily download a couple torrents, and go through all that bandwidth in a couple days. Granted I secure my internet, so I have nobody leeching off my internet. However, there really is no argument that leeching from an open wifi router isn't stealing. If you download 1 GB of data, that's 1 GB less of data for me to use. And possible could charge extra fees on my bill.

Re:Define "Public"

[flappinbooger]

Well, to take the garden hose analogy and run with it->

If I have a garden hose laying in my yard and it's running and a neighbor walks INTO my yard and drags it over to HIS yard and waters his flowers with it, then that would be "theft" of my water.

If I have a sprinkler in my yard and it's going into my neighbors yard and watering his grass, I can't complain that he's benefiting from my water.

The extension cord analogy is the same, if a neighbor walks into my yard and plugs something into my extension cord ON MY YARD, then that would be "stealing" electricity. If I flop an extension cord into HIS yard and leave it there, and he plugs into it, how can I complain?

If I was broadcasting some sort of tesla coil wireless power technology and my neighbors leached off it, is that stealing? I'm shooting "magical power" onto their property, who am I to complain?

These analogies don't work. People need to secure their APs if they have neighbors, it's just that simple. Conversely, I tell my customers that if they live out in the country and it's simply impossible for a neighbor to pick up their wifi, leave it unsecured unless they're the paranoid type.

Re:Define "Public"

The reason why unencrypted wireless networks must be seen as publicly accessible is that that is the only way deliberately open wireless LANs can be used. There is no way your phone or laptop can distinguish an accidentally open wireless LAN from an intentionally open wireless LAN. If there were public power outlets and your outlet looked just like a public power outlet, it would indeed be your responsibility to secure it (i.e. make it obvious that the outlet isn't meant to be used by the public).

Since it is technically impossible to make a radio frequency transmission private without encryption, the wireless LAN standard does not have a separate way of declaring a WLAN public. This distinction is made by not encrypting the signal.

Re:Define "Public"

[gstoddart]

Interesting. Standard setup in the U.S., from major Cable/DSL/Fiber ISPs is a flat-rate, unmetered connection that is limited by data rate (and ISP whim).

Here in Canada, you get X Gigs/month at one rate. As you go over that, you essentially pay per gig. I had understood that even in the US, "unlimited" came with footnotes that essentially say "unlimited does not mean unlimited".

So, yes. I'm arguing that the nature of open wifi accessible from public space gives implicit permission.

I'm not saying that's false, and I'm not saying it's true. I'm saying it seems a bit of a gray area, and I'm willing to bet most of what we're saying here doesn't have sufficient case law to actually say much more than what we think. Which seems to be something that happens a lot with tech. Something becomes trivial, but has ramifications, and nobody has fully explored them and what to do about them.

From a technical standpoint, this will soon be moot. Just about every WAP sold recently now comes with one of those "push button to secure network" features, making it brain-dead to lock your network.

Technology both gets us into, and out of some of these things. In the spots in between, it's not often 100% clear on what is right, what is wrong, and what should be worked around until we have something better.

Cheers

Re:Define "Public"

[wwfarch]

Wireless vs wired has almost no bearing on whether or not you can use up a 250 GB bandwidth limit. The bandwidth available to wifi is typically much higher than the internet bandwidth itself.

Assuming 30 days in a month that 250GB limit would be reached with a consistent throughput of just over 100 KBps. If you can't push that over your wireless connection then you have something seriously wrong in your network setup.

Re:Define "Public"

[xaxa]

Almost all home wireless routers I see in the UK are either secured and have a default SSID (e.g. BTInternet24829, Thomson3468FE etc) or are unsecured and have a custom SSID (FreeNet, CoffeeShop, etc).

The big ISPs send out routers preconfigured with all the necessary settings, and the default SSID and WPA key on a sticker on the bottom of the router. I just moved house, and my new router came like this, but there's also an option to set up a public (unsecured) network as well. (I haven't bothered yet, we're on a very quiet road and I doubt anyone would use it.)

Re:Define "Public"

The difficulty with your whole stealing stuff, is that connection to an unsecured Wireless network is a two-way thing with compliance from the other side. Unless I'm doing things like MAC stealing, if I take a random comp or smartphone, and see an SSID, and ask the network for association, obtain it, and then send data to it, and it willingly puts in on the public Internet and brings back responses, sends ACKs, etc, how do I know I have done anything wrong? My best clues are that it's perfectly fine, since it very easily could have just refused to respond, and it didn't, it went through a multi-step process on the air interface and then it is also going to the trouble of moving those packets somewhere for me. I asked, and it said "yes". If the access point is basically otherwise indistinguishable from the free hotspot or motel (many don't bother with portals), how am I even supposed to even know that I'm not "authorized" to use it, it should just fucking tell me. The electric plug can't do this, and I typically have to infringe on someone's property rights to make use of it without asking for permission. It also helps that there are laws on stealing that readily cover most of the cases you mention. You can be found criminally or civilly liable for those transgressions with near certainty, wireless is a case which bring news defenses (not all so easily dismissed as you seem to think) to the fore.

About the taking candy from a baby not being a defense. The flaw with that, and the reason that it can fail legal defense muster (perhaps you were talking about ethics... but)... is that successful legal arguments (civil) in the past have often looked at the costs to *both* parties to prevent a problem, not just one. Few would argue that a baby is mostly defenseless, and so essentially has infinite costs to protect themselves (they simply can't do it) (I'm referring to civil damages issues here... not the criminal part). I can basically argue that the people putting in wireless routers are not defenseless.

While you could argue that the market and ignorance cause people to do these things, and it isn't "their fault", few people have a gun to their head when putting in an unsecured wireless router, the information about risks are easily available on the Internet. People choose not to follow them. If it were really that big of a legal or safety issue (like, say, electric service), DIY incapable people would pay to have a professional put in their wireless. They don't. They do so willingly, they judge the cost exceeds the benefits (why should I be penalized for *not* questioning their judgement). People pay big bucks for electricians and plumbers. The people that willingly put in an open WiFi router to the Internet with no screening or portal, tells me in enough response packets that its OK to use.

Re:Define "Public"

[mr_mischief]

If you don't want to share your resources with the public, quit using the public airwaves to broadcast the availability of your resources for free, which is what an open access point does. It specifically tells other systems that it is there. It tells those systems that it is available. It assigns them the necessary address information required to make use of it. It happily routes for them. It does all of this across what the government considers a public resource: a segment of the EM spectrum used for communications.

If you broadcast your SSID, you leave your access point open, you don't filter MAC addresses at the AP, you don't filter MAC addresses at the DHCP assignments, and you route traffic for passersby, then your network is both offering directly supporting their use. They are not maliciously taking something. You have your network configured to offer it. Whether you have to pay for what you're offering is of no concern. People offer to share what they've paid for all the time. It's called generosity.

In your specific case, you have your WiFi secured. That means your network is specifically telling people they are not free to use it.

There's a very old process people have of getting rid of stuff: they put it at the curb with a sign saying, "Free for the hauling" or something similar. If people broadcast to the curbside that their network access is free for me to use, I should be able to assume they mean it.

Re:Define "Public"

[colinnwn]

Rotide's quote was cute, but didn't get to the root of the matter. The real issue is when you have a DHCP server you are running on an unsecured wireless connection, and you don't even bother to set your SSID to something like (stayoffmywireless), then you are inviting people to use it. I specifically and intentionally have my wireless unsecured to allow neighbors to occasionally borrow it, though I have the speed significantly throttled so I don't turn into the neighborhood free ISP.

Re:Define "Public"

If you run a hose into my yard, I might just water my lawn with it. If you run an extension hose into my yard. I might just plug my electric lawnmower into it. If you broadcast internet in my house, I might just use it. If you dont want me to play with your toys, keep them on your property. If you had a tree on your yard with a branch hanging over into mine, would you complain if I hung a bird feeder to it?

The message has been brought to you by the people against bad analogies, I am Anonymous Coward and I approve this message.

Re:Define "Public"

[chill]

So far, every account I have has been "unlimited, but there is a cap" and over the cap they don't charge, but they start throttling hard.

I have 3 kids at home that live on online games, online videos and chat. It isn't uncommon for them to all be set up with Teamspeak and Xfire for voice chat, with multiple chats at once; WoW or some such; plus a TV show streaming in a window. I should probably look at my bandwidth usage... :-) Comcast hasn't screamed at me lately.

Yes, you're right in that there is a big legal gray area. I know the ISPs would be against it, because it impacts their over-subscription model. Of course, the only winners are the lawyers...

Re:Define "Public"

[mr_mischief]

Since you don't like black and white, let's discuss shades of explicitness. How explicit of permission do I need?

Is the broadcasting of "open network here" explicit enough? Each WiFi client card has its own uniquely assigned (unless I'm taking steps to clone someone's in order to trick the AP, of course, which would be stealing) MAC address which identifies it. Isn't it pretty explicit that I'm allowed to communicate with your AP if it associates with my device with its unique MAC? How about the DHCP server responding to that uniquely identified device? It then offers me an address and tells me what DNS servers to use. Then, it routes data for me. That doesn't exactly seem to be hostile to my using it, as the system has been configured to explicitly offer me:

1. notice of availability
2. connection to the device
3. connection to the network address assignment service (DHCP)
4. assignment of an address
5. assignment of DNS servers
6. routing

When the technology is built into pretty much every AP and AP/router combo on the market to either accept or deny a device at any one of those steps and it keeps specifically offering those services, how in the world can someone be more explicit? You want a sign on the building that says, "Here's my SSID. Free WiFi here!"?

Re:Define "Public"

[KingMotley]

So the other day I was walking along and noticed a nice park. I looked around and I saw a few unsecured benches. I looked around for a sign telling me who the owner was so that I could contact them and ask if it was open to the public, or if it was a privately owned bench left unsecured by someone else, but I could not find one. Without any indication that it wasn't a privately owned, unsecured bench sitting in a public place, I decided to use it.

While sitting I decided to pull out my iDevice, and started to browse the web. When I opened my browser, I saw a few unsecured routers. I looked around for a sign telling me who the owner was so that I could contact them and ask if it was open to the public, or if it was a privately owned router left unsecured by someone else, but I could not find one. Without any indication that it wasn't a privately owned, unsecured router broadcasting in a public place, I decided to use it.

If you want to put an unsecured bench in public where other people can legally get it (not on your private property), then you need to secure it, put up a sign letting people know it's not for public use, or you are implicitly letting the public use it. If you want to put an unsecured router where other people can legally send/transmit to it (not on your private property), then you need to secure it, put up a sign (password protect it/encrypt it/or not broadcast the SSID), or you are implicitly letting the public use it.

Re:Define "Public"

[Abcd1234]

In the US, they typically are.

For now, yes. But when (yes *when*, Verizon is already planning to roll out a usage-based fee model, and I'm willing to bet other ISPs won't be far behind) that happens, will you no longer advocate unauthorized use of other people's internet connectivity?

Re:Define "Public"

So, if you're watering your lawn with a sprinkler and I drink some of the water you think I should go to jail for theft? Let's stop thinking of this in black and white and be smarter.

Re:Define "Public"

[Missing.Matter]

If you don't want people to use it, it's a trivial matter to configure your router to stop inviting people to use it. Turn off SSID. Lower the signal strength so it stays on your own property and out of public spaces. Implement WEP or WPA.

You dismissively state that configuring wireless security is trivial, when most people don't even understand why wireless security is important, let alone how to go about implementing it. Everything you listed there makes no sense to the person who can just go to best buy and hook up a router. Open wireless networks are real easy to set up. As soon as you as security, it's an entirely different matter.

First you have to go to http://192.168.1.1/ or some such, which is a completely foreign address to most people that it becomes confusing. You don't know how many times I've seen people go to http://www.192.168.1.1.com./ Then you type in the admin/admin login, which usually stays that way. On to configuring the wireless, which grants you options for SSID, channel, a,b,g,n, WEP, WPA1, WPA2... all without explanations of the options or which are best to use.

Most likely you'll go through some automated setup which will ask for an SSID and set a default encryption type with a random key. Here's one for you: d&K8EHg%K!JOEHK!sMisapTic7j\CgKqbexpwSj7I\VX0pN$1\jbk30B9t7KOQ/

Now go enter that in all your wireless devices. Half your devices enter a masked password, like your TV, so you spend an hour just typing it in there, only to figure out it doesn't support WPA2 or whatever you chose. So you're back to reconfiguring your network.

It's at this time you throw up your hands and say "fuck it, I'm leaving it open"

Re:Define "Public"

[guruevi]

Depends on where you live really. Some would say your driveway is private property, but the legal arm of the government (in the US and some places elsewhere) really doesn't think it is so they can go in your driveway and then attach a GPS module to your car. Since your private parking lot has recently been declared public property, you really can't do anything when I park there, use (or remove) the water hose and electricity that you offer for free to the public.

At least that's how precedent and the law works in my naive head and IANAL but maybe somebody will bring this to the Supreme Court.

Re:Define "Public"

[RoverDaddy]

In the UK do routers generally only come from your ISP? In the US the ISP often provides only a direct wired connection to a single computer: any router is often the customer's responsibility to provide and it comes from an electronics store (Best Buy, Walmart) so they're all configured exactly the same out of the box.

Re:Define "Public"

[xaxa]

The big ISPs all provide a free wireless router (some seem to have this as a permanent "promotion", others just write things like "we'll send you a wireless box").

The small ones I've dealt with do too, but might charge an extra £30-40 for it.

I assume it prevents lots of technical support calls to send them out preconfigured.

Re:Define "Public"

[jjhall]

Depends, does a person have to enter your private property to use said electrical outlet or garden hose, or is it wired/piped out to the street (or other public right-of-way) with a sign hanging on it saying its open for use? Is a crime committed if someone waking in front of your house if they stop in the light provided by your porch light and use that light to read the directions someone gave them?

You have to remember that we're talking about radio waves that can and do extend well beyond property lines in the physical world. The other thing to remember is that access points broadcast (read announce) to everyone within range that they're open. They also approve or deny every attempt to connect to it. So in essence, a person driving down the road hears the AP advertising itself, asks if it is OK to connect to it, gets approved, and gets assigned an IP address.

I don't think there is any way to tell for sure if an open AP is intended for open use or not, and it should be assumed that if it is open it is OK. Say your name is Joe, and you live next door to a completely unrelated Joe's Coffee Shop. If you name your WiFi SSID "Joes" and leave it open, how are the coffee shop customers to know they are using your AP rather than one provided by the business for their use?

To get back to your electricity analogy, if someone breaks into your house and they turn on a light, do they also get charged for stealing electricity, or do they simply get breaking and entering and/or burglary? What if they get a drink of water from the kitchen sink? The crime they committed was the entry of private property without permission in the first place, not use of readily available resources once on that property.

If you don't want others to connect to it outside of your physical property boundaries, then you need to take steps to prevent it. This includes lowering the power, MAC filtering, using WiFi blocking paint and window coverings, and turning on encryption. If your signal extends beyond the physical boundaries of what you control, and therefore no trespassing needs to take place to use your advertised resource, then no mis-deed has taken place.

Re:Define "Public"

I don't agree with this. I think it should be the owners responsibility to secure their network, but the possibility for legal ramifications exists.

So, if I have an electrical outlet outside of my house and I don't "secure it", should people be able to plug into my electricity with impunity? How about my garden hose? If I don't physically bar someone from parking in my driveway, that's OK? Is it OK to help yourself to my garden? How about siphoning the gas out of my car?

There's loads of things in the physical world that aren't necessarily secured, but that you don't have a reasonable expectation of being able to use.

I don't agree in any way that just because the wireless isn't 100% locked down that you should get a free pass to just use it. You know you're using a network that isn't yours -- just because you can connect to it doesn't mean you have carte blanch.

Those all require Tresspassing on your property to steal. If you had your garden hose flowing into the street then anyone can use the water that has spilled. I can access a neighbors wifi 3 houses down. You pollute the airwaves with free wifi then it is your fault for not securing it.

Re:Define "Public"

[sjames]

The rules are a bit different. If you plug in your laptop at the Starbucks, should you be prosecuted?

The difficulty with WiFi (and other network resources) is that the conventional markers that tell us if we should apply residential or business conventions is missing.

For example, if you find a residence that is not yours unlocked, you know you are not to enter without permission. If you find a business similarly unlocked during normal business hours, you may presume permission to enter unless a prominent sign says otherwise. If you find an unsecured wifi at a place of business, it's commonly meant for public use. Not so for a home. If the SSID is "Linksys", which one is it?

Thus the new conventions (which the courts are fairly inept at finding and following). If it is open, it may be used and if it is secured (or even weakly "secured" with WEP) it is not intended for public use. If you connect and it takes you to a login page, it is not intended for public use, but if you know who to ask for the password, it might be given to you.

Re:Define "Public"

[LordSnooty]

Just like if you leave your door open, burglars have the legal right to take your stuff (or even just use it)

Re:Define "Public"

[sjames]

Free to the public WiFi is quite common though. If you're going to set up something that looks EXACTLY like free public Wifi, you have no right to expect it to not be used as such. If it's private, then MARK IT as private.

You state that you have done that. Unlike someone who just leaves it unencrypted with a default SSID, you DO have a right to expect people not to use it freely (even if they crack the password).

If your residence is surrounded with public shops and your front door looks just like theirs, what do you think will happen if you don't either lock the door or put up a sign that says private residence?

Re:Define "Public"

[natehoy]

Just use a simple IP redirect. The "wizard" can be a simple web page. The only requirement is that someone plug a computer into an Ethernet port the very first time the device is used.

The first time you plug a computer into the router (or the first time after you do a factory reset) the wireless is turned off and any attempt to connect to the Internet on a plugged-in device gets redirected to the wizard. I'd envision the wizard being about three web pages with a couple of fields and a NEXT button on each. And, of course, an "ADVANCED" button right up front for people who want to skip the wizard and go straight to the "normal" configuration screens.

First step: Security configuration. Ask about things like the admin password, etc. Once the password is set, have the user log back in using that security setting to continue. Your router is now secured before it is on the Internet.

Second step: Connection to the Internet. Test the connection using DCHP. If you get a good connection, just skip this page. If not, try spoofing the MAC address of the machine you are connected to. If that fails, ask about DSL passwords, etc. Have an "Advanced" button that goes to the main config screens for people who know what they are doing and want to craft something more complex.

Third step: Wireless configuration. Allow the user to assign their SSID, WPA password, and channel (autoscan and default to the channel with the least interference, obviously). Or, of course, give the user the option of leaving wireless off. Require the user to go into more advanced configuration screens to set their network as WEP or Open.

Once the configuration is complete, the router can then turn off the redirect and connect to the Internet, then you're good to go.

From there, it can have a spoofed local DNS entry that always translates "MYROUTER" into its own local IP address if you need to get back into the router config for something, so http://myrouter/ will always go to the configuration screen on the local router.

No CDs, no special hardware/software requirements, no nothing. Just a computer with an Ethernet port and a browser that can handle HTTP.

Re:Define "Public"

[cynyr]

doesn't openWRT ship with no wireless by default?

Re:Define "Public"

[gstoddart]

You state that you have done that. Unlike someone who just leaves it unencrypted with a default SSID, you DO have a right to expect people not to use it freely (even if they crack the password).

Yes, well, I know how to do it, and I have done so. I'm not talking about me in the specific, but as an abstraction -- what has a hypothetical person done, and what does that imply about what they've consented to. You know, Joe average who bought a linksys from Best Buy, and it defaults to being wide open. Have they consented to anything?

I just can't fully wrap my head around the idea that unlocked door (or wifi) is actual implicit permission to enter the premises (or use the wifi). If, to turn your example around, if I'm entirely surrounded by private residences, why would you assume an unsecured wifi means public when everything else is assumed to be private? You have no reasonable expectation of any right to walk into my home, so how do you arrive at the notion that the wifi is public?

I'm not sure of what the legal definition is, or if there is enough case law to actually say. That's my point. I'm specifically I'm saying I am not sure one way or the other that this whole notion of "implied consent" is correct. It's a theory, but that's it -- and everybody here is mostly talking from a purely technical perspective, and what they think.

It's all well and good for a bunch of Slashdot geeks to say that since you've not secured your wifi that is implied consent. I just think for the most part, it's people talking out of their backsides with no real consideration of the legal issues.

Now, tell me case law to support it, and I will cede the point. Until then, I suspect that this is a very gray area, and it is going to vary hugely depending on where you live.

At this point, I'm merely saying "is that true" to some of these analogies. I think too much of this is very gray, and nowhere near as cut and dried as the binary thinkers on Slashdot seem to think it is.

Re:Define "Public"

All of the things you've described have 2 things that make them very different from using unsecured wireless:

1. All of those things you've described require someone to trespass on your properly to get access to. Wireless could be available from as far away as across the street or in a completely different building.
2. It's very easy to secure a wireless network, whereas securing those physical things would be rather awkward.
3. There's no easy way to know if the network is public, or someone's private unsecured network. Sometimes it's obvious, but often it isn't.

What is so wrong with trespassing though? It really doesn't harm you in any way, and if you don't have a fence how am I supposed to know you don't want me walking across your property? Trespassing actually seems pretty similar to using someones unsecured wifi(more so than some of the other analogies used anyway).

Re:Define "Public"

You should only use it if the SSID is Public Free WiFi

Re:Define "Public"

[sjames]

I agree that legally, the issue is muddy. I'm just conveying as sensibly as I can the conventions as they have been understood to date and drawing a reasonable analogy between the very different expectations between a home and a business.

It may well be that in a suburban neighborhood where there is no way you could imagine a business' public Wifi is in range that you should presume them to be private, but since the damage is slight, I wouldn't suggest that presumption be so strong that we start prosecuting people. If there are apartments or any businesses in the area, the presumption becomes a lot weaker. If you're using a hand-held device on a bus, the presumption becomes quite weak indeed.

In part, my suggestion is based on the simple fact that wifi signals all look alike. The only unambiguous distinguishing factor that exists is whether or not the AP is configured open. Even if the password is "password" it at least indicates intention.

Re:Define "Public"

[einhverfr]

1) How does the device know what IP addresses to use?
2) How does my computer know which IP address the device has used?

These are the problems that make configuring such a device on anything other than the simplest network into a real nightmare. It's one thing for wireless routers which are usually DHCP servers. But what about WAP's which are usually bridges?

Re:Define "Public"

[wondafucka]

I don't agree with this. I think it should be the owners responsibility to secure their network, but the possibility for legal ramifications exists.

So, if I have an electrical outlet outside of my house and I don't "secure it", should people be able to plug into my electricity with impunity? How about my garden hose? If I don't physically bar someone from parking in my driveway, that's OK? Is it OK to help yourself to my garden? How about siphoning the gas out of my car?

There's loads of things in the physical world that aren't necessarily secured, but that you don't have a reasonable expectation of being able to use.

I don't agree in any way that just because the wireless isn't 100% locked down that you should get a free pass to just use it. You know you're using a network that isn't yours -- just because you can connect to it doesn't mean you have carte blanch.

I hate to play devils advocate, but using your external electrical outlet analogy, you don't have electronic devices that automagically search for the nearest outlet and plug itself in. My wifi will automatically connect to unsecured access points.

Douchebaggery on my part aside, FREE WIFI FOR EVERYONE!

Re:Define "Public"

Hey, twat! How did you end up with bad karma?

Re:Define "Public"

[natehoy]

Keep in mind that I'm mostly talking about routers. If you plug directly in to one, your computer will use DHCP and will be assigned an address by the router. Once you go to any web page, the router will use DNS poisoning to redirect you to its "wizard" page.

This would be an easy way for a beginner to take a router and have it up and running in a few minutes pretty securely.

Re:Define "Public"

If YOU are transmitting an unsecured signal outside the boundaries of your home, then people have every right to use it.
If you leave your hose running to create a fountain on the street, then people should be able to catch that, now public, water and use it.
If you have a spotlight on to light the street outside your house then you can't demand that someone not use that light to READ.
If you throw MONEY onto the road in front of your house, then people should be able to just pick it up and spend it !
Passersby do not DEMAND that you saturate them with radio waves as they walk past, but if they get some benefit, then at least they might not sue you for causing their cancers later !
As has been said, people have a reasonable expectation that if a network is UNSECURED then it's PUBLICLY available.
I have a secured and an unsecured wifi at my home, but most of the time the unsecured wifi is not plugged in to the network. While my neighbours can still see the unsecured access point 24/7, the chances of getting actual web access are limited to an hour or two a week when I plug it in to the network (for my kids ipod touches) - must piss some people right off thinking they're "in" at times! After a while I'm sure that they just stop bothering with it.

Re:Define "Public"

[hitmark]

Metered broadband is a abomination that can not be justified by logic in any way.

water and electricity can be metered because the source can be emptied, never so with data.

At best, data metering is a holdover from analog phones. As calls required a physical wire pair between callers, and long distance wires where few, metering the call length kept calls short. And with telcos being the foremost operator of ISPs these days, it is likely that the attitude have been carried over. Sadly it as about as misplaced as the negative reactions the telcos graybeard engineers had when they first where told the specifics of packet switching.

Basically, most home net connections are by contract, best effort. By adding metering on top of that adds insult to injury, as the user will perhaps see his connection max out once in a blue moon anyways. This thanks to ISP over-subscription of the backbone connection out of the local area.

Re:Define "Public"

[einhverfr]

How do you think wireless access points should be configured?

Re:Define "Public"

[natehoy]

That's a tougher one.

Though, I suppose you could simply make the Ethernet port an autodetect. If it doesn't see a simple DHCP network on the port, it hosts a 192.168.1.x LAN on that port so you can plug a computer into it and configure it that way.

Re:Define "Public"

[einhverfr]

Though, I suppose you could simply make the Ethernet port an autodetect. If it doesn't see a simple DHCP network on the port, it hosts a 192.168.1.x LAN on that port so you can plug a computer into it and configure it that way.

Which would work great as long as you are not using consumer DHCP servers, in which case something like nmap is required to find the darned box after it grabs an IP address....

Re:Define "Public"

Ignoring how bad the analogy is (people pay per usage of electricity and water, but rarely for bandwidth), if I'm in a public place with an open wall outlet I have no problem plugging my laptop into it. I do it all the time in coffee shops and airports. It's assumed that that is a service they're offering, much like if someone advertises an open access point.

If I want people to use my internet connection, I'll advertise an open AP (and I do.)

If someone else is advertising an open AP, I assume they're doing the same.

Theres never been a problem using wifi in a car...

[Viol8]

... so long as its not moving. If you're a passenger in a car doing 70mph you're going to be in and out of range of a wifi hotspot in a matter of seconds so what exactly is the point of this research? To prevent people getting bored in traffic jams in towns?

Re:Theres never been a problem using wifi in a car

so what exactly is the point of this research?

To work as well as it did in the real-world tests they put it through? RTFA. Fucking idiot.

good for text messaging, notgood for streaming vid

[mapkinase]

Wiffler is smart about when to send the packets. It doesn't replace 3G, it augments it and transmits over WiFi simultaneously, allowing users to set WiFi as the delivery method of choice when it is available -- and when an application can tolerate it. Not every application can handle even a few seconds delay in the stream (VoIP) -- and WiFi tends to drop more packets than 3G does. But many apps can handle even a minutes-worth of delay perfectly well (messaging).

Re:Theres never been a problem using wifi in a car

[xaxa]

It could be useful on a bus -- they tend to be in cities, the passengers tend to be bored, and they don't go very fast. (Cars in cities too, but they tend not to have passengers.)

It might work on a train, but railways are less likely to be in WiFi range (tunnels, and the land around railways isn't often the kind of place you'd get free WiFi). It's probably easier to stick with the current system: have a WiFi hotspot on the train and let that figure out what to do (3G, Satellite, or however they do it).

Re:Yo moron

[tepples]

Just because it doesn't work on your iFruit doesn't mean that it won't work with something that was designed for this purpose.

But how would a city bus line offering Wi-Fi negotiate carriage with every AP on its routes?

11% of the time

[jc42]

... researchers determined that a reliable public WiFi hotspot would be available to their test vehicles only 11% of the time ...

but then a closer look found that in those cases, 99% had the SID "Free Public WiFi".

Re:11% of the time

[choongiri]

That is funny, but it also does say "reliable"... presumably that means "with functioning internet access".

Re:11% of the time

[jc42]

... presumably that means "with functioning internet access".

Well, I wouldn't bet on that. In my experience, when the connection-state display widget on a screen says 4 bars of signal, it means you have "reliable" messages between your gadget and one relay tower. It doesn't mean you can reliably exchange data with anything beyond that tower. It's merely the level-1 link status.

Does anyone's handset actually test connection to a remote site before showing its "4 bars" status?

Re:11% of the time

[choongiri]

Random handsets, no, but we're talking about the researchers' connections from their vehicle. I would hope that when specifically testing for availability, the researchers did a little more than drive around and see if their iphone could associate with the ap ;)

Re:11% of the time

[karnal]

I've actually seen this issue with wifi. With the laptops that work uses, the green bars icon at the bottom can show 4 green bars - indicating that the user has good signal. To the laptop only.

If you look on the controller/access point, there are times that the user's laptop is having severe difficulty reaching the AP - hence even though the user has 4 or 5 bars, the AP cannot process any packets (they're garbage) and the user's applications don't work.

I think that the cell towers/phones work the same way. I don't believe that there's a communication from the tower to the cell phone saying "you're coming in at 20db S/N" - the phone is just displaying how good of a signal it's seeing from the tower. That's it......

Re:11% of the time

[jc42]

I would hope that when specifically testing for availability, the researchers did a little more than drive around and see if their iphone could associate with the ap ;)

Yeah, I'd hope so, too. But I wouldn't bet on it.

Actually, with WiFI, it typically takes several seconds for a "connection" to the AP to stabilize. Consider the typical range of 30 or 40 m with WiFi APs, if you're in a moving vehicle, what are the chances you'd still be in range by the time the reply to a TCP message came back?

Re:11% of the time

[choongiri]

if you're in a moving vehicle, what are the chances you'd still be in range by the time the reply to a TCP message came back?

If you have that problem, the AP is going to be useless to you for offloading data to as well. This sort of usage is clearly unusual, and there are plenty of ways it can fail, but that's kind of why it's interesting - it gives you the possibility to offload data onto a wifi network if it's possible to do so. If you're not in range long enough, or don't find an open AP soon enough, it can fall back to 3G.

Re:Theres never been a problem using wifi in a car

[Idiomatick]

If you are in a wifi hotspot 15% of the time it offloads 15% of the 3g usage. Thats the point. 3g is expensive.

Thats thinking too small

[geekoid]

I've been saying it be over a decade: put the repeaters in the cars, create a dynamic mesh network. Don't correctly, a signal could travel hundreds of miles, from vehicle to vehicle. Pretty much all centrals of large populations would have WiFi access corresponding to the number of people using it.

Re:Thats thinking too small

[Abcd1234]

And the latency would be *atrocious*. Yeah, for a simple text message it might be okay, but for anything beyond that, it'd be a lesson in frustration.

Re:Yo moron

[WrongSizeGlass]

But how would a city bus line offering Wi-Fi negotiate carriage with every AP on its routes?

And would a bus using this technology in the Netherlands have to register as an ISP?

Cohda

[femto]

You need this, a box which eliminates doppler and multipath from 802.11 channels.

Ricochet

[Xacid]

This seems to be leaning towards a variant of Ricochet: http://en.wikipedia.org/wiki/Ricochet_(Internet_service) I was actually pretty bummed out that they failed. They were way ahead of their time.

Re:Theres never been a problem using wifi in a car

[geekoid]

The problem you describe isn't really a problem. It's been solved on a small scale.This could solve it on a huge scale.
There are many uses for connecting to the internet beside surfing and watching videos.

Using the phone while driving

[iONiUM]

I feel like this is just encouraging me to use the phone and internet while driving. Awesome. Nothing more annoying than slow internet in slow traffic.

Re:Using the phone while driving

[mcgrew]

It's for passengers, not drivers. Using the internet (or texting or reading a book) while driving is just plain stupid and dangerous to others.

Why should we have to...

[Nethemas+the+Great]

use two different technologies in the first place. Cellular technology is obviously the clear winner with respect to mobile data communications when you can't be tied down to a WiFi base station. It isn't the technology that's the problem, it's the business model. Since it's obvious Verizon and kin are running the wrong direction on this maybe it's time to look at ways to compel them to operate differently.

100% Wifi

[jojabo]

11% of the time it works all the time

Re:good for text messaging, notgood for streaming

[DCstewieG]

So the benefit of WiFi speeds can be used for extremely low bandwidth needs, but not high ones. Great, I'll be much happier that my 50 byte messages go over WiFi after a couple minutes than over 3G immediately.

Re:Theres never been a problem using wifi in a car

[ledow]

Correction, 3G is artificially expensive (come on, NOBODY needs to account in pence per Mb any more!), sticking the equivalent of a basic business DSL-line connected DSL on every cell tower would cost nothing and allowing roaming between countries where the same operator is present in both (T-Mobile, I'm looking at you) means that's data is basically pence per Gb. You can QoS-limit it over the airwaves to prevent congestion (it SHOULD be the lowest priority traffic, even below SMS if that can be done) but nothing in the world stops 3G actually always being better than crowding a city with 2.4GHz meshes.

I ran an entire school with 150 machines off a 3G stick - in the centre of a large London town (about 10 miles from the city centre), situated in the middle of a busy shopping street, with god-knows how many other 3G users, with interference from hundreds of nearby phones, with several other 3G sticks just metres away (the actual dongle was stuck in the main network room in the centre of the building with miles of copper coming into / out of it, crammed against other USB devices), all getting decent connections and speeds and because it was only for an emergency, we ran for 8 hours with that configuration and ordinary users didn't spot the difference between that and their normal 24Mbps ADSL connection, even when the Internet was being used for lessons (admittedly local caching helped a lot). The deal we got was PAYG 3G on a £10 stick that, for £2 a day, let us use up to 3Gb a month. We did 3Gb in that day and bought ANOTHER lots of sticks / SIM's to keep us safe for the next day - we ran that config for 20 days while our broadband was restored (even though T-Mobile would only limit us if we went over on any one SIM, not block us or charge us). So looking at that, it cost us 66p per Gb, and was more than capable of running a school in peak period in a technologically busy city. We were quite within our rights to just keep buying 3G sticks, or even just PAYG SIM's, and carrying on with that forever.

3G is artificially limited by the carriers. Anything that competes with that is welcome because the carriers can and will just drop prices to force them out of the market (and then probably raise them again when they're gone). But there is nothing in 3G or 4G that stops it from doing a much better job than public Wifi whenever you can get any sort of 3G signal at all. 3G isn't "expensive", using current-day carriers that support 3G is expensive - there's a difference.

P.S. I have a stack of cheap 3G USB dongles if anyone is interested... :-)

Transparently switching from secure to insecure

[apparently]

networks is supposed to be a good thing?

"Researchers from Microsoft and the University of Massachusetts have been working on a technology that would let mobile phones and other 3G devices automatically switch to public WiFi even while the device is traveling in a vehicle.

"Hey my traffic can't be sniffed, hey my traffic is now being sniffed, hey it's secure again, now it's not!" Brilliant.

Already been done

[BodeNGE]

It's already been done in 2007 by Nokia and Siemens, and is part of the 3GPP standard. 3GPP TR 23.806 (for voice, but works for data too). Repeat after me all you Americans: International standards are better than propriatary ones.

Free Public Wi-Fi

[digitaldc]

Don't trust it.

More reading: http://research.microsoft.com/en-us/news/features/wiffler-091610.aspx

Re:Yo moron

[Grismar]

I certainly hope so, because that will help overturn the rules that imply same for hotels. It simply doesn't make sense; if it has to be regulated, it could just as easily be changed to "a hotel has to register as an ISP if it provides network access to others than their guests". It's besides the point though, as far as TFA is concerned. However, trains already provide Wi-Fi as we speak and buses may just as well - and they'll have a harder time convincing the powers that be that they're not serving the public. It will be nigh impossible to restrict access to people inside the bus, unless you feel like changing the passkey for the connection every you hop onto a bus.

Re:Yo moron

[hedwards]

The transit system around here was working on that for a while. What they did was set up a low power access point in the middle of the bus, and hooked that up to a cellular card. The effect was that you were using WiFi, but since you were in the same reference frame, you didn't have to deal with any of the random interruptions you would otherwise have to deal with.

The main problem would be in tunnels and plain old congestion.

802.11p

[SirMasterboy]

Isn't this idea kind of what the 802.11p amendment that was published last summer was for?

Re:Theres never been a problem using wifi in a car

[Viol8]

Unless th vehicle is moving slowly then by the time the device has negotiated a connection with a wifi hotspot then its probably already out of range.

only 50% - must not have been on 128 at rush hours

[Locutus]

with the typical AP having only a 300m range in open air and traveling at 55+ MPH, they would be in and out of the AP quite quickly. But, if they were sitting in traffic then that would be another story. I've been quite disappointed with how many of the Android apps rely on 100% data connectivity instead of intermittent connectivity. Even the facebook app just dumps a notification and does not continue with the post or upload unless the user interacts with the notification. I found no setting in the maps/navigation app to cache the route but must rely on me manually scrolling through the entire route to cache it and then hit the road. Believe it or not, there are still dead xG spots out there and wifi-only is currently not an option.

Maybe this study will wake up the apps developers to intermittent connectivity and make the device much easier to use.

LoB

Re:good for text messaging, notgood for streaming

[hedwards]

I take it you're not an AT&T customer.

To expand on your garden hose analogy.

[maillemaker]

>How about my garden hose?

I think your garden hose analogy is quite appropriate.

You are correct, that I should be able to walk onto your property and turn on your water and use your garden hose.

But what if you set up a sprinkler in your yard, and some of your water sprays over into my yard?

Should I be able to set out a bowl and collect the water that you are spraying into my yard? I think so.

Your hypothetical unsecured wireless router is broadcasting beyond the boundaries of your property, and by the protocol it is using, is announcing itself to the world as being available for anyone to use. Why shouldn't anyone be able to use it?

Re:To expand on your garden hose analogy.

[gstoddart]

Your hypothetical unsecured wireless router is broadcasting beyond the boundaries of your property, and by the protocol it is using, is announcing itself to the world as being available for anyone to use. Why shouldn't anyone be able to use it?

And, to answer a question with another question ...

The closest example I can think of to this is satellite and other telecoms signals. Does the fact that a signal reaches you give you the legal right to use it? Or is it still considered private?

I know broadcasters have argued that the signal is still theirs and you can't use it without their permission.

I don't think any single analogy will cover all of the bases. And, I don't really claim to have an answer ... mostly just questions. ;-)

Less Radio More Wires

[mutherhacker]

Am I the only one who is against the proliferation of data over radio? Be that wifi, 3g, 4g or whatever? It has been proven that radio waves transfer their energy to nearby tissue so if we keep this up, I think it's a matter of time before the human lifespan is 8 years old from radio waves induced cancer.

Re:Less Radio More Wires

[Missing.Matter]

It has been proven that radio waves transfer their energy to nearby tissue

"Proven?" It's elementary physics. Energy is transfered to and from your body all the time from the air, objects, sound, light, and yes, EM waves. This isn't a point of contention (unless you're from the 1600s). The question is to what degree do radio waves stimulate cancer growth, and that is still open.

Re:Less Radio More Wires

[mutherhacker]

I am not knowledgeable on the issue of EM radiation but with my basic understanding of waves I would say that:

• air molecules, objects and light affect only your skin (in the event of air lungs too)
• sound perhaps resonates and "moves" parts of the body depending on it's frequency
• EM waves, being of much higher frequency, have the ability to resonate within the cellular level and thus damage DNA.

But it's just an uninformed guess :)

Re:Less Radio More Wires

[Missing.Matter]

I'm glad you recognize it's an uninformed guess. Just so you know, visible light is EM radiation, and it has a much higher frequency than radio waves.

With respect to the issue of cancer, it's not a simple matter of "What frequency resonates with cells"

Re:Less Radio More Wires

[mutherhacker]

Just so you know, visible light is EM radiation, and it has a much higher frequency than radio waves.

lol. Just so you know, this is slashdot. I'm pretty sure everybody knows the wave-particle nature of light.

Broadcast to all your neighbours automagically

wireless networking is supposed to be a good thing?

"Hey my traffic is broadcast to everyone around me. Please sniff and brute-force my keys, before I lose them myself! I can't be bothered to do security Right, by installing a proper wired network."

Captcha: streams

Sarcasm off

Re:Broadcast to all your neighbours automagically

And that has what, exactly, to do with GP's post?

Mod parent up

Mod parent up

Re: Define "Obvious"

[colinnwn]

First, all the things you specified requires a user to come onto your property without authorization to obtain them. Radio frequencies spill onto adjacent properties unless you make an effort to prevent that from happening, with lower power or physical barriers (wet concrete walls or Faraday cages.) So it isn't a good comparison.

But beyond that, unsecured wireless connections usually have a DHCP server running on them that is in essence advertising access and providing IP addresses to any takers. So if you do nothing to secure your wireless network, and someone connects using a DHCP aware client, then you have invited them to use your internet access.

Now if you have wireless without an encryption key, and you've changed the SSID to , or you have IP filtering, or MAC filtering, or don't have a DHCP server running and are statically setting IP addresses on clients, and someone connects to your wireless by setting their IP or MAC address to a known good IP or MAC on your network, then maybe I can agree with your reasoning.

Re:only 50% - must not have been on 128 at rush ho

[Nerftoe]

I love Wolfram Alpha:

55mph for 300M

How to handle protocols sessions?

[LordAzuzu]

I was wondering how do they deal with the various protocols sessions, jumping from wan to wan?

Re: Define "Obvious"

[colinnwn]

Crap...

I stupidly put angle brackets around the SSID I wanted to say - (donotconnecttome)

Host Information Protocol (HIP)

[WebManWalking]

Isn't that what HIP is for? Maintaining identity/virtual connections as one transitions across multiple Internet access points? At first glance, this appears to be reinventing the wheel.

Previous Research

[mythandros]

Here's a paper written by a fellow who's now a professor at U of I, Chicago which relates to the topic. The gist is that taxi's in a city were equipped with wifi and opportunistically connected to open access points as they traveled. The article won't revolutionize anything but it's certainly an interesting read and something worthy of building upon. One of the interesting parts is that the taxi-side wifi used a custom written utility to accelerate establishing a connection which didn't bother negotiating transmission speed but rather used a fixed 11Mbps as this was determined to be optimal for the setting.

Whatever Happened to UMA Network Handoffs?

[Doc+Ruby]

I thought UMA was supposed to give mobile devices a Generic Access Network that would switch them seamlessly among GSM, WiFi and CDMA networks. We're already getting phones calling themselves "4G" - don't we have working UMA/GAN devices by now.

Wi-Fi for pass holders only

[tepples]

It will be nigh impossible to restrict access to people inside the bus, unless you feel like changing the passkey for the connection every you hop onto a bus.

Or unless the captive portal requires logging in with credentials issued by the transit authority. For example, even a bus system that doesn't operate on Sundays issues reduced-fare cards to seniors and people with disabilities, and it also sells monthly passes.

Re:Yo moron

But how would a city bus line offering Wi-Fi negotiate carriage with every AP on its routes?

Actually they should make the Buses and Taxis the AP/relays/bridges themselves. A dynamic mobile grid if you will.

Supreme Court says "yes"

If I don't physically bar someone from parking in my driveway, that's OK?/quote>

The Supreme Court of the United Status has ruled that, yes, if you don't physically bar someone from your driveway then your driveway is public:

http://www.time.com/time/nation/article/0,8599,2013150,00.html

Re:good for text messaging, notgood for streaming

[sjames]

You WILL be happy about that when you don't get charged the world's highest per byte charge by the cell provider!

Re:Yo moron

[carvalhao]

Well, in Portugal's capital, Lisbon, quite a few buses offer WiFi for a fee.

Re:Theres never been a problem using wifi in a car

[Idiomatick]

Yep. Cellphone companies generally charge 10x what they need to. Its criminal and the government should stomp down on them. Your SMS comment was amusing because SMS cost 0 to send ... they literally encode it into messages they were going to send anyways. The wasted data from their pov is in the bits. And they charge 10-15c each for those in many places.