Creating a secure wireless network

Padlocks

Wireless has given us the freedom to roam without the restrictions of cables, yet many of us are unaware of the potential dangers. I'll take you through the security risks and give advice on how to create a more secure wireless network.

Here's a question, would you go away on holiday and leave your front door and windows open? I would hope not, because you know that you may get broken into. This is exactly the same as just switching on your Wireless Access Point and not configuring the security options at all.

Security Risk #1 - strangers could access your Internet connection

If I were your neighbour, or within range of your router, I could take advantage of your unsecure network by connecting to your Wireless Access Point and using it for my Internet connection. This means I would use up your bandwidth and download quota instead of mine.

In Australia, Internet Service Plans are based on download limits so by using someone else’s Internet connection I can limit my own download quota. This is very easily done when no security has been set and happens every day to unsuspecting victims.

Security Risk #2 - strangers could access your PC!

For this more severe, albeit less likely example, imagine I'm a neighbour who has even fewer scruples. Again, I could use my laptop to connect to your Wireless Access Point. From there I could attempt to get control of your router, which would be easy to do if you had not changed your access point's default Username and Password. In most cases this information can be found via a simple search on the Internet for the default Username and Password of your router model.

From inside your settings, I could find out what address your PC is using and if you are not using a firewall, I could gain access to your computer. Now this scenario is an extreme one but is very possible.

Setting up a secure wireless network is important but not always easy. However, asking your IT consultant to configure your Wireless Access Point correctly will both save you time as well as money in the long run.

Here are ways that your IT consultant can configure your Access Point in a way that can create a more secure wireless network.

1. Change Username and Password on Wireless Access Point

The first thing to do is to change the username and password of your access point so that no one can gain access to the configuration settings.

2. Disable SSID Broadcast

The SSID is simply the name that you can give your network via your access point. Disabling the broadcast of it will stop other people seeing it. However, just doing this action will not necessarily stop intrusion.

3. Set MAC address filtering

Each network has a unique address called a MAC address. Configuring your access point to only accept connections from your MAC address will help stop other people trying to connect to your network.

4. Set up WEP

WEP stands for Wired Equivalent Privacy. WEP encrypts the data being transmitted. To use WEP, a 'key' must be generated which is then placed in your access point as well as your PC or laptop. Without this key it would be fairly difficult to connect to your access point. WEP can also be configured with either 64-bit Encryption or a 128-bit encryption

5. Set up WPA

WPA stands for WiFi Protected Access. WPA is the successor to WEP and is intended to be much stronger encryption method. Although WPA has stronger encryption, WEP is still widely used and accepted.

Using a combination of these security measures will help keep your network safe from prying eyes. No secure wirelss network is foolproof but making it harder for hackers to gain access to your network or files is worth the effort.

Remember, once someone has connected to your Wireless Access Point, they are effectively inside your home or office.

Gary Hecht works as an IT Consultant and provides technology solutions to the SME market in Melbourne, Australia.

2 comments | Add your own

Wireless security is a massive topic, full of many and varied opinions and personal abilities. The most secure computer is one that's off. Proper security consists of a thorough approach, including commercial (where IP is proprietary and invested-in) anti-virus, anti-spyware, firewalls, non-default configurations, updated operating systems, backups (restore tested), operating system updates, physical security and then most importantly.. addressing the weakest link of the lot .. the Human configuring all of this. (pin numbers on post-it notes, dictionary word passwords or family members names; including Pets are common and targetted)
So, firstly - consider if you want wireless just because its cool, or you have a real operational need to remove the network cable from your machine in favour of broadcasting your traffic around the local neighborhood.
Belinda from Sydney
Wireless security can be had for $50 USD a year. I use a personal VPN called SpotLock by jiWire. It detects wireless networks, I can connect using the software then engage my personal VPN. No more sniffers allowed. I then make sure my anti-virus program is running as is my personal firewall at the highest setting that allows the web activity I need.
I think wireless security is a matter of personal responsibility. Secure your access point if you can. Don't use WEP, it's a pseudo-security to make you feel good - any 14 year old can hack it in 15 minutes or less and if you are using it, it makes them want to see what you are hiding.
Wireless is part of the future of technology - not just cool. It creates mobility and is vitally important for any Solo because it allows for better time management. As a result, invsesting in a personal firewall that can be used on any wireless network that you are using is the ONLY way to go! Sharon from Redington Shores, Florida, USA

2 comments | Add your own

Add Your comments

Preview comment

Name

Website *

Town / city and country

Email (never sold, displayed or given away)

* This will link your name to your site. So please avoid self promotion elsewhere! We delete spam, disrespectful or off-topic comments.