Here's a question, would you go away on holiday and leave your front door and windows open? I would hope not, because you know that you may get broken into. This is exactly the same as just switching on your Wireless Access Point and not configuring the security options at all.
Security Risk #1 - strangers could access your Internet connection
If I were your neighbour, or within range of your router, I could take advantage of your unsecure network by connecting to your Wireless Access Point and using it for my Internet connection. This means I would use up your bandwidth and download quota instead of mine.
In Australia, Internet Service Plans are based on download limits so by using someone else’s Internet connection I can limit my own download quota. This is very easily done when no security has been set and happens every day to unsuspecting victims.
Security Risk #2 - strangers could access your PC!
For this more severe, albeit less likely example, imagine I'm a neighbour who has even fewer scruples. Again, I could use my laptop to connect to your Wireless Access Point. From there I could attempt to get control of your router, which would be easy to do if you had not changed your access point's default Username and Password. In most cases this information can be found via a simple search on the Internet for the default Username and Password of your router model.
From inside your settings, I could find out what address your PC is using and if you are not using a firewall, I could gain access to your computer. Now this scenario is an extreme one but is very possible.
Setting up a secure wireless network is important but not always easy. However, asking your IT consultant to configure your Wireless Access Point correctly will both save you time as well as money in the long run.
Here are ways that your IT consultant can configure your Access Point in a way that can create a more secure wireless network.
1. Change Username and Password on Wireless Access Point
The first thing to do is to change the username and password of your access point so that no one can gain access to the configuration settings.
2. Disable SSID Broadcast
The SSID is simply the name that you can give your network via your access point. Disabling the broadcast of it will stop other people seeing it. However, just doing this action will not necessarily stop intrusion.
3. Set MAC address filtering
Each network has a unique address called a MAC address. Configuring your access point to only accept connections from your MAC address will help stop other people trying to connect to your network.
4. Set up WEP
WEP stands for Wired Equivalent Privacy. WEP encrypts the data being transmitted. To use WEP, a 'key' must be generated which is then placed in your access point as well as your PC or laptop. Without this key it would be fairly difficult to connect to your access point. WEP can also be configured with either 64-bit Encryption or a 128-bit encryption
5. Set up WPA
WPA stands for WiFi Protected Access. WPA is the successor to WEP and is intended to be much stronger encryption method. Although WPA has stronger encryption, WEP is still widely used and accepted.
Using a combination of these security measures will help keep your network safe from prying eyes. No secure wirelss network is foolproof but making it harder for hackers to gain access to your network or files is worth the effort.
Remember, once someone has connected to your Wireless Access Point, they are effectively inside your home or office.
“ Here's a question, would you go away on holiday and leave your front door and windows open? ”
Gary Hecht works as an IT Consultant and provides technology solutions to the SME market in Melbourne, Australia.
