Ask the Expert

Use WPA and two-factor authentication to secure your customer's wireless network

I have already suggested that my customer enable WEP and apply IPsec. Is that combination secure enough? Do you have other suggestions for a secure wireless network?

    Requires Free Membership to View

I don't recommend the use of WEP, which is easily cracked. Instead, use Wireless Protected Access (WPA) or the newer WPA2 based on the 802.11i security standard. WPA adds rotating keys to WEP, eliminating the obvious vulnerability, and WPA2 is based on an entirely different security standard, AES. WPA2 may require new hardware, however. Regardless, the use of a VPN like IPsec, or other upper-layer security mechanism is always recommended, because it allows security to be end-to-end. WLAN security of any form only secures the airlink, and thus does not address the non-WLAN portions of your network. Finally, the use of strong authentication based on 802.1X or similar is recommended. I personally use two-factor authentication which includes a hardware token, as well as 1024-bit end-to-end encryption. But, then, I'm just a little paranoid...

This was first published in November 2006

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: