Use WPA and two-factor authentication to secure your customer's wireless network

It pays to be paranoid. WEP is easily cracked, so here are a few other recommendations for a secure wireless network.

Craig Mathias, Farpoint Group

Published: 26 Nov 2006

I have already suggested that my customer enable WEP and apply IPsec. Is that combination secure enough? Do you have other suggestions for a secure wireless network?

I don't recommend the use of WEP, which is easily cracked. Instead, use Wireless Protected Access (WPA) or the...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

newer WPA2 based on the 802.11i security standard. WPA adds rotating keys to WEP, eliminating the obvious vulnerability, and WPA2 is based on an entirely different security standard, AES. WPA2 may require new hardware, however. Regardless, the use of a VPN like IPsec, or other upper-layer security mechanism is always recommended, because it allows security to be end-to-end. WLAN security of any form only secures the airlink, and thus does not address the non-WLAN portions of your network. Finally, the use of strong authentication based on 802.1X or similar is recommended. I personally use two-factor authentication which includes a hardware token, as well as 1024-bit end-to-end encryption. But, then, I'm just a little paranoid...

Dig Deeper on Wireless networks technology and services

Is WEP cracking still a worrisome WLAN security issue? Wireless expert Lisa A. Phifer explains to what extent WEP cracking remains a worrisome issue. It all depends on your company's WLAN security policy.

WLAN Security Learning Guide Discover how to secure wireless networks in our comprehensive guide to locking down your WLAN.

The role of VPN in an enterprise wireless network Given improvements in Wi-Fi security, does VPN still have a role to play in enterprise wireless? What are the practical benefits and limitations of using VPN over wireless? This tip discusses where to make best use of VPNs and how to smooth over conflicts between WLAN roaming and VPN tunnels.

From the ground up: Creating secure WLANs In this video, Lisa Phifer of Core Competence Inc. focuses on creating secure WLANs, including WLAN basics and implementation best practices.

How to avoid the WPA wireless security standard attack The latest crack in wireless Internet security, specifically, the Wi-Fi Protected Access (WPA) security standard, can threaten the safety of enterprise networks and company information or data. This tip shows the best way to avoid being victimized from this cryptographic attack, and explains the differences between WEP, WPA, and WPA2, and how WEP cracking caused 802.11 standards to evolve.

Best practices for securing your wireless LAN Perhaps the biggest network security concern for many enterprises is securing a wireless local area network (WLAN). This three-part expert lesson provides best practices for securing a WLAN in the enterprise. Lesson 1 focuses on methods of systematically monitoring your WLAN for intruders and ways to proactively reduce network discovery. Lessons 2 and 3 focus on how to protect users and the network, respectively.

Related Q&A from Craig Mathias

How can network analytics tools benefit IT staff?

Network analytics tools can help IT managers proactively pinpoint network performance issues and trends -- even before the underlying problem is ... Continue Reading

How should IT handle app onboarding for employees?

When it comes to onboarding a mobile app for internal use, IT should make the process as easy as possible. Here are several strategies to help. Continue Reading

Is satellite connectivity a realistic option for WANs?

What you should know about satellite connectivity, satellite internet, and the costs and benefits of universally available links. Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our IT Channel experts

View all IT Channel questions and answers

MicroscopeUK

SCC chief heralds solid year

The last twelve months have been busy ones for SCC and its chief executive is keen to highlight its achievements

Stone Group undergoes an MBO

Firm goes through second MBO in the space of 11 years as it changes investment backers

Northamber founder David Phillips passes away

The founder of Northamber has sadly died after suffering a short illness

SearchSecurity

City of Pensacola hit by ransomware attack

A cyberattack, later confirmed to be ransomware, hit the city of Pensacola, Florida on Saturday, and the city is currently in the...

Ryuk ransomware change breaks decryption tool

The threat actors behind Ryuk ransomware made changes to their code that have made the official decryption tool unreliable, ...

Use a data privacy framework to keep your information secure

Find out how a data privacy framework gives companies the tools they need to ensure their information is protected -- from both ...

SearchStorage

Quobyte storage brings satellite imagery down to Earth

Quobyte storage customer 3vGeomatics produces analytical data on ground deformities that are potential environmental hazards. The...

Startup Komprise extends data analysis to AWS object stores

Komprise's Intelligent Data Management software expands beyond file storage and tacks on module to analyze AWS cloud object ...

Samsung V-NAND SSDs designed for high capacity, speed, efficiency

Samsung's V-NAND chip breaks through existing 3D NAND cell stacking limits with the industry's first 100+ layers in a move ...

SearchNetworking

Test your knowledge of SD-WAN deployments and testing

As SD-WAN becomes more mainstream, organizations must learn what to expect during all phases of deployment. Try your knowledge of...

4 SD-WAN vendors integrate with AWS Transit Gateway

Aruba, Cisco, Citrix and Silver Peak are among the first SD-WAN vendors to integrate their products with the AWS Transit Gateway.

Assess the Wi-Fi 6 features available in Wave 1 and Wave 2

Catch up on the different features available with the first wave of Wi-Fi 6, including OFDMA and Target Wake Time, and find out ...

SearchCloudComputing

Get started with Azure tags

The more Azure resources an organization consumes, the harder it becomes to track those resources. Proper tagging can help manage...

Review these Azure Service Bus best practices

When applications talk, you need to listen. Learn about Microsoft's cloud messaging service, its main features, best practices to...

Instill cloud change management best practices

Automation is essential to change management in the cloud. Discover the best practices that ensure your IT team is in sync and ...

SearchDataManagement

Data warehouse technologies evolve as vendors look skyward

The need for high-speed analytics and low latency are pushing data warehousing vendors to create and reinvent their platforms and...

Top database cloud migration considerations for enterprises

As the amount of incoming data grows, many organizations are switching to cloud databases. Understanding what database best meets...

Amazon cloud database and data analytics expand

AWS expands its Redshift data warehouse capabilities including managed storage and query acceleration at the re:Invent 2019 ...

SearchBusinessAnalytics

Alteryx 2019.4 highlighted by new integration with Tableau

New integrations with Tableau that enable easier data management and Mapbox to provide street-level map views come with the ...

BI vendors jump into low-code/no-code tools for developers

A spate of BI vendors included easy-to-use tools for developers in their recent updates, perhaps marking the start of a new trend...

Sisense analytics platform update features AI, data prep tool

Augmented intelligence features and an in-warehouse data prep tool highlight Sisense's latest update, its second since acquiring ...

Dig Deeper on Wireless networks technology and services

Related Q&A from Craig Mathias

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.