The Basics Of Wireless Security
When browsing the web you are exposed to many vulnerabilities. By virtue, the operating system you use is enough to expose personal information to any relatively technical individual. Whether you are at your desk or in the comfort of your home, the information you transmit to and from the Internet is, by default, not secure. Out of the box, the wireless router you install at home in minutes does not have security enabled. Manufacturers feel as though adding default security creates a level of complexity that the average user doesn’t want to be bothered with. Many individuals feel as though they don’t care about who’s watching until they make that first credit card purchase.
Many open source applications such as Wireshark were designed to be a network tool but have the ability to be much more. A graphical interface with information sorting and filtering options allows packets to be captured whether wired or wireless. Consequently making the information you transmit/receive available for others to view.
WiFi can be transmitted and/or received by so many different devices that the amount and type of data passing by us is remarkable. From cell phones and gaming systems to desktop and laptop computers, packets of data are passing through the air at unimaginable rates.
When you go to the local computer superstore and purchase an access point or wireless router you’re often given misleading advice that give you a false sense of security. Many of the commonly recommended wireless security tips aren’t actually all that useful and may even do more harm than good by giving you that false sense of security.
Too often, we catch a story about an individual being accused of possession of, or downloading, illegal material. By having a wireless network unsecured or improperly secured, you become an open portal for the transmission of such material. On top of that your network is leading the trail for authorities directly to you!
Why? How?
Your Internet Service Provider (ISP) assigns an IP address to you via the router they provided. The destination or source IP address for the illegal material is simply captured as part of the packets being transmitted. The authorities trace the IP address to the ISP who then traces the IP address to the one assigned to you. By not having your network secure, you hold a level of responsibility for the type of data being transmitted to and from your router whether having the knowledge of it or not. Hypothetically, someone can connect to your network without your knowledge and either download or transmit illegal material. You’re thinking — The police will just see that I didn’t do it. Very true, but only after your neighbors saw the police at your home/office seizing your PC and your name was published in the newspaper. Did I mention a costly defense?
What can I do to secure my wireless network?
Don’t broadcast your SSID
The SSID (Service Set Identifier) is an identification that is broadcasted by a wireless router. Basically, it’s the router saying “I’m out here, this is my name, connect to me.” Telling a router not to broadcast its SSID may prevent basic wireless access software from displaying the network as a connection option, but it does nothing to actually secure the network. Any time a user connects to a router, the SSID is broadcast in plaintext with that packets sent and received, regardless of whether or not encryption is enabled. SSID information can also be picked up by anyone listening to the network in passive mode.
Disable DHCP
DHCP or Dynamical Host Control Protocol is when an IP address is automatically assigned to your device. Static IP addressing is when you manually assign an IP address to your device and giving you the ability to change your subnet. Switching DHCP off and using static IP addressing is no defense against a potential hacker. Anyone sniffing the network can usually figure out the IP scheme that has been used to assign the IP addresses with the subnet range.
Filter MAC addresses
Each NIC card has a unique MAC address. Theoretically, this sounds great as a wireless access points can be configured to accept or block specified MAC addresses. The problem with filtering by MAC address is that these addresses are easily detected by anyone using appropriate monitoring software like Wireshark.
Filtering MAC addresses is the only one with even a minimal level of value. MAC address filtering can keep a beginner hacker or neighbors from easily connecting and accessing your wireless network, but it won’t do much else. To keep more sophisticated intruders off of your network, you’ll have to use encryption in addition to MAC address filtering
Use Encryption
Even the routers you can purchase locally are capable of using encryption. What ever encryption you use, your key phrase should consist of as many characters, symbols, and numbers as possible. WPA is a good encryption method, followed by WPA2, WPA, WPA, and WEP. Generally, any router that supports WPA is good in terms of its overall security. WEP is an “only if you must” protocol, but it’s still a better option than transmitting without encryption.
What does this have to do with computer forensics?
New Jersey Legal posses the expertise to evaluate your network, whether wired or wireless and work with you to firmly secure it. Often times, a company solicits themselves as having forensic experts on staff. Without having extensive networking knowledge, the forensic expert will overlook data that may be vital to your case. Don’t allow the smoking gun be left undiscovered!
No related posts.
