 |
|
| FREE NEWS SERVICES • Newsletters • RSS feeds • Alerts |
CAREERWEB • Register • Post your CV • Find your job |
BRAINSTORM
• Subscribe • Read online |
iWEEK • Subscribe • Read online • Get into iWeek |
IT TRAINING • TrainingWeb ITWEB EVENTS • Events Calendar |
FEEDBACK
• Post your feedback • Send us a news tip |
 |
 |
|
25 November 2003
Wireless technology offers secure communication medium
TIMOTHY POPE
, OPERATIONS DIRECTOR, FIRST TECHNOLOGY CAPE
[
25 November 2003
] -
Many companies will be left behind when it comes to implementing wireless networking technology as most do not have a documented wireless strategy in place.
"That is a real problem," says Timothy Pope, operations director atFirst Technology Cape, who points out that while wireless is wonderful in its ability to free users from their desks, it also opens a business to a whole new world of security risks.
"The recent 802.11g standard ratification - the latest standard for what's popularly called 'WiFi' - has spurred a new sense of urgency around wireless connectivity, specifically with an increasing number of wireless enabled laptops finding their way into the market.
"This, together with wireless 'hotspots' appearing in and around the major cities, is a clear indication that the potential for additional wireless connectivity is growing rapidly."
According to Pope, the question that companies need to ask is whether today's wireless technology is secure and if it can be implemented securely.
"The answer is a definite yes. Wireless can be deployed using factory default settings - which means it is probably as secure as a rusty wire fence - through to a highly secure implementation using supplementary VPN technology. The issue for companies is to determine the level of security they need - and then to ensure their implementation of the technology meets this need," he explains.
Pope points out that protecting business information systems has become a full-time job - whether the systems run on wired or wireless infrastructure.
"WiFi has merely added to possible access methods and introduced a new dimension and new vulnerabilities," he says.
Historically, network access was restricted to physical limitations of the network including geographic restrictions. The network was then extended to include remote access, which in turn introduced a new risk with hackers dialling in and breaking into networks, cracking usernames and password authentication.
"Permanent Internet connections were then created and perimeter security - including firewalls - had to be introduced. As business moved from remote access devices to the Internet as a preferred access method, a secure connection had to be made over the public network. Enter virtual private network (VPN) technology.
"Now WiFi allows anybody within range of a wireless access point to establish an unauthorised connection. However, securing WiFi connectivity is not as complex as it's made out to be," he adds.
"Certainly, simply configuring any wireless system using its factory settings for passwords and login accounts is asking for trouble. But, if you take the trouble to simply implement all its built-in security features, you will have gone a long way to limiting the risk.
"If your security requirements are of such a nature that the current WiFi standard is inadequate, then using a similar if not equivalent design as your Internet VPN will almost certainly suffice," he adds.
He says there are risks associated with WiFi, particularly if it's treated as a commodity technology without attention paid to design and configuration criteria.
An additional aspect that may compromise network security is the added opportunity for a network user to enable the integrated WiFi card on his or her laptop and communicate with a third-party WiFi user either inside or outside the building. This allows the user to circumvent the access point, thereby creating a real possibility for unnecessary vulnerabilities.
"The message companies need to take seriously regarding wireless networking is that they must decide on a strategy regarding WiFi and be realistic about the expectations. Design an architecture that accommodates WiFi fulfilling the level of security needed.
"Finally, and of primary importance: companies must audit the airwaves regularly in order to detect any possible transgression of their WiFi security policy," he concludes.
"That is a real problem," says Timothy Pope, operations director at
"The recent 802.11g standard ratification - the latest standard for what's popularly called 'WiFi' - has spurred a new sense of urgency around wireless connectivity, specifically with an increasing number of wireless enabled laptops finding their way into the market.
"This, together with wireless 'hotspots' appearing in and around the major cities, is a clear indication that the potential for additional wireless connectivity is growing rapidly."
According to Pope, the question that companies need to ask is whether today's wireless technology is secure and if it can be implemented securely.
"The answer is a definite yes. Wireless can be deployed using factory default settings - which means it is probably as secure as a rusty wire fence - through to a highly secure implementation using supplementary VPN technology. The issue for companies is to determine the level of security they need - and then to ensure their implementation of the technology meets this need," he explains.
Pope points out that protecting business information systems has become a full-time job - whether the systems run on wired or wireless infrastructure.
"WiFi has merely added to possible access methods and introduced a new dimension and new vulnerabilities," he says.
Historically, network access was restricted to physical limitations of the network including geographic restrictions. The network was then extended to include remote access, which in turn introduced a new risk with hackers dialling in and breaking into networks, cracking usernames and password authentication.
"Permanent Internet connections were then created and perimeter security - including firewalls - had to be introduced. As business moved from remote access devices to the Internet as a preferred access method, a secure connection had to be made over the public network. Enter virtual private network (VPN) technology.
"Now WiFi allows anybody within range of a wireless access point to establish an unauthorised connection. However, securing WiFi connectivity is not as complex as it's made out to be," he adds.
"Certainly, simply configuring any wireless system using its factory settings for passwords and login accounts is asking for trouble. But, if you take the trouble to simply implement all its built-in security features, you will have gone a long way to limiting the risk.
"If your security requirements are of such a nature that the current WiFi standard is inadequate, then using a similar if not equivalent design as your Internet VPN will almost certainly suffice," he adds.
He says there are risks associated with WiFi, particularly if it's treated as a commodity technology without attention paid to design and configuration criteria.
An additional aspect that may compromise network security is the added opportunity for a network user to enable the integrated WiFi card on his or her laptop and communicate with a third-party WiFi user either inside or outside the building. This allows the user to circumvent the access point, thereby creating a real possibility for unnecessary vulnerabilities.
"The message companies need to take seriously regarding wireless networking is that they must decide on a strategy regarding WiFi and be realistic about the expectations. Design an architecture that accommodates WiFi fulfilling the level of security needed.
"Finally, and of primary importance: companies must audit the airwaves regularly in order to detect any possible transgression of their WiFi security policy," he concludes.
|
•
First Technology
First Technology is one of SA's largest, independent IT solutions providers, offering customers solutions and services that maximise business productivity, reduce the risk associated with deploying new technologies and minimise the total cost of IT ownership. The company has fully-fledged branches in every major business node across SA and maintains one of the largest teams of highly skilled technical personnel in the country. EDITORIAL CONTACTS
First Technology
Timothy Pope Operations director (021) 464 2300 Citigate ICT PR |
 |
||||||||||||||||
|
||||||||||||||||
 |
||||||||||||||||
|
Copyright (c) 1996 - 2012 ITWeb Limited. All rights reserved. Would you like to see your news here? Contact us for more details at itnews@itweb.co.za |
|||||||||||
|
