Wireless Security

Wireless access points within the perimeter of an organisation represent a potential threat to security of the internal network. Access points are commonly connected to the internal network, and are usually supplied without any security configuration. This provides an insecure access directly into an organisation’s network which cannot be easily detected from the wired local network.

In order to understand the potential threat from using Wireless Local Area Networks (WLANs) with inadequate security configuration (such as without encryption, or with weak “WEP” encryption), it is useful to understand the physical boundaries with which WLAN signals can be received (passive snooping), and from which a successful active connection can be made (active attack).

Use of standard wireless equipment, such as a wireless-enabled laptop system or a palmtop or PDA with wireless access card is a commonplace activity. Anyone with seemingly legitimate grounds to be on or near the premises can make use of such equipment for passive network monitoring without raising any suspicions or being in any way detectable from the network infrastructure.

Wireless signals used in standard WLAN equipment are not very effective at penetrating solid materials such as building walls, metal or even trees. They are, however, detectable over reasonable distances when travelling along an uninterrupted line-of-site. By use of a “omni-directional“ antenna, which concentrates the received or transmitted signal in a particular direction, effective range of a WLAN signal can be increased, effectively allowing anyone from a nearby road, building or carpark reasonable wireless signal strength.

eSecure has significant experience in wireless security. We can assist you by understanding your wireless requirements, identifying wireless activity boundaries, identifying legitimate & illegitimate (rogue) Access Points, reviewing or testing wireless configurations – authentication & encryption mechanisms, to determine the risk exposure to your organisation with respect to your proposed or implemented wireless network solution.