Get the LinuxSecurity news you want faster with RSS
Powered By
When it comes to wireless security, good enough is simply not good
Source: infosecnews.com - Posted by Vincenzo Ciaglia
As security threats increase in quantity and complexity, assuring business continuity means that corporations need to aggressively and proactively protect the entire network infrastructure. . . .
As security threats increase in quantity and complexity, assuring business continuity means that corporations need to aggressively and proactively protect the entire network infrastructure.
Enterprises will continue to invest in purpose-built, comprehensive security products to defend their wired network, but even more importantly, the enterprise must protect the more vulnerable wireless portion of their networks. Because wireless networks utilize a transport mechanism (air) that can be hacked easily, and users can move from location to location, these networks require even more stringent and specific security solutions. The price the enterprise could pay for deploying "good enough" security in their wireless network includes loss of revenue, loss of reputation, loss of productivity, and in some cases loss of market capitalization.
And yet, enterprises that deploy wireless networks are being told that wireless networks do not need the purpose-built security products such as vulnerability assessment, network admission, intrusion prevention, patch management, firewalls and virus outbreak control that they rely on to secure their wired networks. Enterprises are being told by wireless access point and switch vendors that they can simply rely on RF management and "security features" that have been bolted onto the AP or WLAN switch to assure that their wireless infrastructure is secure. RF management and 802.1x alone does not offer assurance of a stringent network admission process that includes authentication, authorization, vulnerability assessment and patch updating. Authentication using WPA802.1x does not do anything to stop a vulnerable or infected device from getting onto the network. RF management is a limited solution at best and can't pattern match to look for virus signatures or protocol anomalies. The switch vendors claim of "good enough" security using a WLAN switch will not suffice when a worm proliferates throughout the entire network as a result of infected device being admitted onto the wireless part of the network.
