WEP vs WPA

Another question I get asked a lot is on Wireless security.  People get very confused by the security options out there, and the industry doesn’t help by adding acronym after acronym.  So what do you do?  The answer is fairly simple – secure your network with WPA!!

There are lots of methods to use to secure your wireless network.  The most common is WEP, but that is being replaced by the newer (and better) WPA protocol.  You can also secure the network by allowing only specific computers on the network.  This is simple to do, and doesn’t require security keys and messy settings.  The problem with it is that the data you send wirelessly is not encrypted.  With WEP and WPA, the data is encrypted.

What are these things anyway?

WEP or Wired Equivalent Privacy (see the Wiki for more info) is an encryption protocol developed in the late 1990’s to secure wireless networks.  It offers 64bit and 128 bit encryption using a key generated by a passphrase you enter, but is easily cracked.  Despite this, there are a ton of people who still use WEP since it is the default protection on many routers.

WPA (WiFi Protected Access) is the next generation encryption algorithm that replaced WEP.  WPA uses 256bit encryption keys, and is far more secure than WEP.  It’s not the be-all-end-all, but is very good.  As with WEP, you have the option of generating a security key using a passphrase so that you don’t have to remember a string of random hex digits.  This is great, BUT you have to be careful about the passphrase you use.  DON’T use things like your pets name, your kid’s name, your street, or anything that can be guessed.

The clear answer is to secure your network with WPA.

BUT – do you have to secure your network at all?  The safe answer is yes.

What happens if you don’t secure your network?  That depends on where you live, how close your neighbors are, and how you secure your computers.  Most wireless routers have a range of 150 feet.  That means that if your neighbors are more than 150 feet away, they will not be able to get on your network unless they are standing outside your house with their laptop.

If you don’t change the default security settings on your computers, chances are that even if someone did get on your network, they wouldn’t be able to do much.  By default settings I mean:

• No shared hard drive locations
• Remote control disabled
• Firewalls up and running on every computer
• Anti-Virus up and running on every computer

Of course, this is not always realistic – I have lots of shared directories, and remote control enabled on my machines because I like to be able to work on any machine from anywhere if I need to.  For that reason, I like to secure the network so that if someone manages to get on they won’t get to my personal files.

The bottom line on security for wireless networks is best practice is to secure your network using WPA.  That said, if you live in a remote area where no one will likely be in range of your wireless, it’s not really necessary, just a good idea.

• Find the physical location of an IP address There are lots of ways to do this, but I have a couple of favorite sites that show you the location and other details about an IP address. Geobytes gives you location information including latitude and longitude, time zone from GMT, country, region, city and a Google map of the......
• Conflicker - I mean, seriously If you don't already know, conflicker is a worm that exploits a buffer overflow in the windows server service.  The worm is wiley - there are several hundred variants and it is difficult to know how widespread it is.  You can find more info on the Wiki or on the......
• iPhone SMS vulnerability IDG News is reporting that Apple is planning an update to fix a vulnerability in the SMS message handler that could be used by an attacker to run code with full access to the device.  According to security research Charlie Miller during a presentation the SkyScan conference, the patch will be......
• Gmail for BES? Goolge App connector targets Gmail for the Enterprise eWeek is reporting that Google is releasing software for BES (Blackberry Enterprise Server) that will allow GMail to be routed to blackberry devices.  The software is in beta now, but will be available to users of Google Apps Premier when it is fully released in July.  Right now, the application......
• Eye-Fi How cool is this?  This is the Eye-Fi wireless memory card for your camera.  It wirelessly transfers photos and video from your camera to your computer and/or to your favorite photo site whenever you are in range of the wireless network you specify.  No more cables, no more uploads, just......

• 8 Strategies For Improving Corporate Cell Phone Security Today's corporate cell phone users are accustomed to an enormous amount of functionality from their hand held wireless devices. A wide variety of features, coupled with broadband connectivity, allows for quick and easy access to email, file transfers, internet browsing, etc. - from almost any location.As the functionality of......
• How to Encrypt Your VoIP Network For a Secure Connection The security of VoIP networks have been the subject of much debate. With internet hacking at an all-time high these days, VoIP users have every right to be concerned their user information, phone services or even their phone calls are being listened to. Because of this risk, individuals and......
• Why You Should Have A Home Security Alarm Many neighborhoods have a neighborhood watch nowadays. However, your neighbors are not always watching your home. That is why having a home security alarm is the best way of protecting yourself and your family. Do not let unwelcome guests into your home to do what they please. Setting up an......
• 7 Common Security Issues Found in Most VOIP Implementations Voice over IP (VOIP) has finally overcome Quality-of-Service issues and demonstrated enough ROI to be deployed in most Enterprise Network Environments. If you walk into any Fortune 500 company or a medium/large financial institution you will find VOIP phones being implemented. The core VOIP technology has greatly improved and......
• Learning How to Finance Your Future Most of us think about retirement and panic. It can be tough trying to figure out how we’re going to survive and plan for our futures when we’re just trying to make ends meet right now. If you’re strapped for cash at the end of every month, chances are you......