Wireless Network
Broadband - How to Secure Your Wireless Network
It wasn’t all that long ago when personal computers where restricted for offices and wealthy households. Moreover, computer networks where practically unheard of in residential settings, such technology was reserved for large office buildings – things however, have progressed considerably over the years.
One of the most common methods to share a broadband connection within homes and offices today is using wireless technologies.
Although such technology has revolutionised the way people can access networks and the internet it does have a major disadvantage, one that was not prevalent with coaxial cables or the more familiar CAT5 network cable; this being security.
The technology that comprises a wireless network usually consists of a wireless router; wireless receivers (generally USB dongles or built in antennas); and in some cases one or more repeaters (if the signal needs to span an exceptionally long distance).
Once set up, the wireless router will happily start broadcasting and accepting information within a certain radius. This essentially means that your next door neighbour (or anyone in range!) could be accessing your network, and leaching your internet connection – which as well as invading your privacy could be costing you money if you have a broadband usage allowance.
So, the first line of defence is to familiarise yourself with your network and your routers configuration options, which are usually accessed via a browser window
Router manufactures tend to apply the same SSID (the networks name) and login details for all of their routers, so to begin with, changing these to something more personal is the first line of defence.
Following this you should apply some form of encryption, the popular choice being WEP (Wired Equivalent Privacy) and WPA (Wi-Fi Protected Access), the later of which is the most secure. This involves applying a specific “key” that any computer attempting to access your router will need to input.
Lastly, possibly one of the best ways to ensure only devices of your choice have access to your router is to establish MAC filtering. MAC or Media Access Control is a unique code given to every physical network device.
Therefore, finding out the MAC code for each device in your network (this can prove difficult to the untrained so referring to the manufactures manual is recommended) and inputting only these addresses on your MAC filter list will ensure only they will have access.
In conclusion, securing your wireless broadband network is relatively easy, with a wealth of broadband sites out there offering helpful information and guides you’re never far from help. Such sites often allow you to compare broadband packages, as well as offering expert help.
About the Author
Liam is a UK based writer.
 |
 New AIR CT5508 100 K9 Cisco 5508 Wireless Controller network management  US $27,300.00
|
 Cisco AIR WLC4402 25 K9 Cisco Wireless Networking US $9,070.26
|
 Cisco 5508 Wireless Controller Network management device 8 AIR CT5508 12 K9 US $7,028.99
|
 Netgear Prosafe Wc7520 Wireless Lan Controller 4 X 10 100 1000base t Network US $4,238.17
|
 Enterasys Networks WS C25 Wireless Access Point US $4,144.75
|
 Juniper Networks WLA632 01 Wireless Access Point US $3,540.68
|
 Juniper Networks Wireless LAN Access Point WLA632 Wireless access po WLA632 01 US $3,245.99
|
 Trapeze Networks MX 200R Mobility Exchange Wireless Juniper WLC200R US $2,995.00
|
 Cisco Wireless LAN Controller 2106 Network management device AIR CT6 1042A3 K9 US $2,903.99
|
 Cisco WCS APBASE 50 Network Adapter Wireless US $2,625.36
|
 Optionfinder 40 Wireless Response Network System US $2,670.50
|
 Extreme Networks 15714 Wireless Access Point US $2,460.18
|
 Symbol 48 Port Wireless Network Switch NEW Open Box US $2,410.00
|
 Meru Networks MC1500 Wireless LAN Controller US $2,196.49
|
 Enterasys Networks WS AP3620 BUY2 Wireless Access Point US $2,161.51
|
 Sonicwall 01 SSC 4953 NSA 250M Wireless N Network Security Appliance US $2,108.76
|
 Enterasys Networks WS CTLCAPUP25 Wireless Access Point US $2,078.97
|
 SMC Networks SMC2888W NEW IN BOXES Commercial Grade Outdoor Wireless System US $1,985.00
|
 Meru Networks AP433E Wireless Access Point US $1,974.28
|
 PEOPLENET TABLET ONBOARD VEHICLE COMPUTER WIRELESS GPS IN CAB NETWORK SYSTEM US $1,895.00
|
 AIRTIGHT NETWORKS SPECTRAGUARD SA 210 WIRELESS VPN US $1,895.00
|
 Cisco Wireless LAN Controller 2106 Network management device AIR WLC2106 K9 US $1,648.99
|
 Cisco 2504 Wireless Controller Network management device 4 p AIR CT2504 5 K9 US $1,602.99
|
 1941w Wireless Integrated Services Router 2 X 10 100 1000base tx Network 2 X US $1,367.20
|
 Meru Networks AP311 Wireless Access Point US $1,296.35
|
 Meru Networks AP310 Wireless Access Point US $1,196.20
|
Enslaving the Airwaves: the Repercussions of Insecure Wireless Networks
There is no doubt that wireless technology has evolved the way we communicate. With the popular 2.4 GHz frequency being unlicensed and inexpensive, people all around the world have been able to do things that were nothing short of impossible in the past. While this may be the case, the same also applies to hackers; wireless technologies have allowed them to not only penetrate the impenetrable, but also break into personal networks with blazing speed (as in minutes and even seconds if the wireless network's access point [AP] is completely unsecure).
So what can happen if someone breaks into your network? Well for starters, it acts as a gateway for hackers to break into your system. On top of that, they can install sniffers (which allow them to steal such things as passwords and other sensitive information), adware, spyware, trojans, viruses, worms, backdoors, rootkits, and other malware as well as pursue wireless jamming attacks, encryption attacks, DoS attacks, and other various attacks. In short, given enough time, the sky is the limit on what a hacker could do when they get inside your AP.
At this point, many may say to themselves “Well, I have nothing of value on my computer, so I don't care if they hack into it”. This couldn't be any farther from the truth. If hackers compromise your computer, they'll turn it into something called a “zombie” (in other words, their slave), which will do anything the hacker wants it to. This could be anything from helping crack (or decipher) passwords, to breaking into websites, to even breaking into other computers.
Here's the kicker: if the hacker uses your computer to break into something and gets caught, guess who faces the consequences? Well, it was your computer that did the attacking, so it will be your fault, no matter if you knew about the attack or not. Whether it leads to fines or even jail time, you are stuck with a mess trying to prove that you are innocent, all while the hacker carries on with his life and pursues more targets.
Knowing about the consequences that can come from insecure AP's, there are many things you can do to prevent outsiders from trying to break in. Ideally, you'll use a “Defense in Depth” methodology, which means setting up multiple layers of security to try and deter hackers from breaking in. Now, some of these things discussed will not really add much in the way of security, but it is additional security nonetheless. Hackers love easy targets, so every layer of security you add makes it more difficult for them to break in, and thus acts as a deterrent. That being said, use the following security measures on your personal AP:
1.) Hide your SSID broadcast. Your SSID is simply the name of your AP. Without it, hackers will not know the difference between your AP and other ones in the vicinity.
2.) Change the name of your SSID. This may not sound like much but, the name can tell a hacker a lot about your AP. Using the default name probably means you are also using the default password, which can easily be found on the internet.
3.) Use MAC address filtering. A MAC address is simply an address burned into each wireless card. Using this filtering means that only the entered MAC addresses can access your AP.
4.) Enable Encryption. Use the WPA or WPA2 (if available) security mode as well as the AES algorithm. This makes it way more troublesome for hackers to eavesdrop your communications.
5.) Use both hardware and software firewalls. Chances are there is a firewall embedded right in your AP, so make sure it is enabled as well as firewalls on the networked computers.
6.) Keep learning about new wireless security threats. Technology keeps evolving, so it is in your best interest to research computer protection articles and other related news sources.
7.) Invest in computer security tools. While it is important to use layered security on your AP, it is even more important to do the same for your computer in case the hacker breaks through.
When it comes to wireless networks, deterrence can be one of the most powerful things working for you, providing you implement a Defense in Depth methodology like described above. With the large amount of weak and insecure AP's that are live today, layered security will play a vital role in whether or not outsiders try to break into your wireless network. In the end, taking the time to secure your AP now could be the difference of legal repercussions or identity theft down the road.
About the Author
Josh George has been an active member in the computer security and Internet Security community since 1998. He has made many presentations to groups that involved members from the FBI, DoD, and NSA and hopes to now help personal and small business users. To learn more about computer security and internet security, the link below provides time-tested best practices and recommended tools: Computer Protection.