Computer Security

Step 8: Safeguard wireless networks

Nobody likes to think the worst . . . that around every corner there's someone snooping into your business affairs or grabbing a free ride at your expense. But if your company has a wireless network -- and information you'd like to keep confidential -- then a little paranoia will serve you well.

*
Don't Allow Shortcuts With Wi-Fi Security


Before you set up a wireless network, make sure all your security measures -- including strong passwords -- are in place. Having a full arsenal of defensive tactics will help thwart intruders.

Make it policy that no one -- not even your network administrator -- can set up "quick and dirty" wireless networks, even temporarily. Manage wireless networks carefully and continually. One rogue access point can undo all your efforts to secure the other access points.


Beyond the Basics . . .

Learn More About the Risks of Wireless Networks

Refer to your manufacturer's Web site for detailed security guidance.

Why Your Business is at Risk

Wireless networks -- sometimes referred to as Wi-Fi or 802.11 networks -- use a radio link instead of cables to connect computers. As a result, anyone within radio range can theoretically listen in or transmit data on the network.

Vulnerability increases with a wireless network. Intruders don't need physical access to your hardware; they can be sitting in your parking lot or in the apartment complex across the street. Freely available tools allow intruders to "sniff" for insecure networks.

There are security features built into wireless networking products, but manufacturers typically turn them off by default because it makes the networks easier to set up.

Top of pageTop of page

Basic Steps You Can Take

Wi-Fi products have configurable encryption and access control features that will make your wireless network more secure. Some general suggestions follow, but you'll need to refer to the documentation that came with your hardware for specific instructions.

Turn on encryption: Turn on and use Wi-Fi Protected Access (WPA) encryption to prevent eavesdropping. There are several encryption technologies used on wireless networks; if your equipment is older (such as WEP) it may not be as robust as WPA and you may want to upgrade. Use a strong password when setting up encryption.

Use access points: With ad hoc peer-to-peer networks you have less control over who can access your network.

Restrict wireless access: If your access point allows it, restrict wireless access to office hours or whenever you expect to use the network.

Filter out casual intruders: Each network card has a unique code called a Media Access Control (MAC) address. You can set access points to restrict network access to trusted MAC addresses. It's not fool-proof, but it should help.


Top of pageTop of page