Volume 2, Spl. Issue 2 (2015)
e-ISSN: 1694-2310 | p-ISSN: 1694-2426
Wireless Security and Privacy, Threats and Security Measures Mrinal Sharma, Manoj Thakur Baddi University of Emerging Sciences and Technology, Baddi-Solan, India mrinal.sharma@baddiuniv.ac.in, manoj.thakur@baddiuniv.ac.in
Abstract—The arrival of wireless technology has reduced the human efforts for accessing data at various locations by replacing wired infrastructure with wireless infrastructure and also providing access to devices having mobility. Wireless networking provides many advantages, but it also coupled with new security threats and alters the organization’s overall information security risk profile. We present a framework to help managers understand and assess the various threats associated with the use of wireless technology. Keywords— Wireless Network, Wireless Security, Wireless Threats,WIPS,WIDS
I. INTRODUCTION The explosive growth in wireless networks over the last few years resembles the rapid growth of the internet within the last decade. Wireless networking presents many advantages. Productivity improves because of increased accessibility to information resources but one of the biggest concerns of Wireless networks is that they are very defenseless to security threats. Wireless security is the prevention of unauthorized Access. II. WHAT IS WIRELESS ECURITY Wireless security is the prevention of unauthorized access or damage to computers using wireless networks. The most common types of wireless security are Wired Equivalent Privacy (WEP) and Wi-Fi Protected Access (WPA). WEP is a notoriously weak security standard. The password it uses can often be cracked in a few minutes with a basic laptop computer and widely available software tools. WEP is an old IEEE 802.11 standard from 1999, which was outdated in 2003 by WPA, or Wi-Fi Protected Access. WPA was a quick alternative to improve security over WEP. The current standard is WPA2; some hardware cannot support WPA2 without firmware upgrade or replacement. WPA2 uses an encryption device that encrypts the network with a 256-bit key; the longer key length improves security over WEP. Many laptop computers have wireless cards pre-installed. The ability to enter a network while mobile has great benefits. However, wireless networking is prone to some security issues. Hackers have found wireless networks relatively easy to break into, and even use wireless technology to hack into wired networks. As a result, it is very important that enterprises define effective wireless security policies that guard against unauthorized access to important resources. Wireless Intrusion Prevention Systems (WIPS) or Wireless Intrusion Detection Systems
301
(WIDS) are commonly used to enforce wireless security policies. The risks to users of wireless technology have increased as the service has become more popular. There were relatively few dangers when wireless technology was first introduced. Hackers had not yet had time to latch on to the new technology, and wireless networks were not commonly found in the work place. However, there are many security risks associated with the current wireless protocols and encryption methods, and in the carelessness and ignorance that exists at the user and corporate IT level. Hacking methods have become much more sophisticated and innovative with wireless access. Hacking has also become much easier and more accessible with easy-to-use Windows- or Linux-based tools being made available on the web at no charge. Some organizations that have no wireless access points installed do not feel that they need to address wireless security concerns. In-Stat MDR and META Group have estimated that 95% of all corporate laptop computers that were planned to be purchased in 2005 were equipped with wireless cards. Issues can arise in a supposedly nonwireless organization when a wireless laptop is plugged into the corporate network. A hacker could sit out in the parking lot and gather information from it through laptops and/or other devices, or even break in through this wireless card–equipped laptop and gain access to the wired network. III. THE THREAT SITUATION Wireless security is just an aspect of computer security; however, organizations may be particularly vulnerable to security breaches caused by rogue access points. If an employee (trusted entity) brings in a wireless router and plugs it into an unsecured switch port, the entire network can be exposed to anyone within range of the signals. Similarly, if an employee adds a wireless interface to a networked computer using an open USB port, they may create a breach in network security that would allow access to confidential materials. However, there are effective countermeasures (like disabling open switch ports during switch configuration and VLAN configuration to limit network access) that are available to protect both the network and the information it contains, but such countermeasures must be applied uniformly to all network devices. Threats and Vulnerabilites in an industrial (M2M) context Due to its availability and low cost, the use of wireless communication technologies increases in domains beyond the originally intended usage areas, e.g. M2M communication in industrial applications. Such industrial applications often have specific security requirements. Hence, it is important to understand the characteristics of BUEST, Baddi
RIEECE -2015
Volume 2, Spl. Issue 2 (2015)
e-ISSN: 1694-2310 | p-ISSN: 1694-2426
such applications and evaluate the vulnerabilities bearing the highest risk in this context. Evaluation of these vulnerabilities and the resulting vulnerability catalogs in an industrial context when considering WLAN, NFC and ZigBee are available. IV. SECURITY MEASURES There are security measures which can be implemented for the wireless security. Enable encryption Encryption is one of your first lines of defense when it comes to securing a wireless network. It encodes the data sent wirelessly between your device and the router, essentially scrambling the information and restricting open access. There are two main types of encryption you can use: Wired Equivalent Privacy (WEP): Introduced in the late ’90s, WPA was one of the first security algorithms available to help ensure a protected network. Although it may still be an option for older routers and equipment, it has demonstrated numerous flaws over the years, essentially leading to its demise as far as Internet security is concerned. It’s better than nothing, but it’s outdated and fairly easy to crack. Wi-Fi Protected Access (WPA & WPA2): Developed as a successor to WEP, WPA and WPA2 are two of the more common advanced security protocols currently used to protect wireless networks. The encryption keys they use change each time a device accesses the network, making it more difficult to hack than WEP. WPA2 is the encryption of choice. Keep in mind that your device, router, and any other equipment being used must utilize the same encryption to work properly. Your network is only as secure as the leastsecure device that’s connected to it. If you have an older router, we suggest replacing it with one that features WPA2 capability. Wireless routers are often not set up with the encryption feature enabled and you’ll need to turn it on before choosing your security options. Most manufacturers will include instructions on how to enable security, while others will go a step further and provide a setup wizard that will include security options when you first access the router. If they don’t, check the company’s website for more information. Choose WPA2 if possible and create a strong password to help ensure limited access. Try a combination of letters and numbers that only you would know. Also, the longer the password, the tougher it will be to crack. Strive for 10 characters or more. Change the router defaults Make sure to change your router’s factory presets (i.e. your admin login and password) to something more secure to prevent any unauthorized users from accessing and changing your router settings. You may also want to change the Service Set Identifier (SSID) name while you’re at it. Most router manufacturers will simply name the SSID after the manufacturer, such as “Linksys,” but it’s a good idea to change the name so others don’t assume you’re using the router’s default username and password as well. Turn off SSID broadcasting
BUEST, Baddi
RIEECE-2015
The SSID functions as a broadcast message that notifies your presence to any and every device within range of your network. All wireless routers have an option to turn off this broadcast, which hides your network from people who may want to access it. It won’t encrypt your data, but no one will try to access a network they don’t know you have. However, this option is not for everyone as some devices have problems connecting to wireless networks if they don’t broadcast the SSID. Allow access based on MAC addresses Every network-enabled device – from desktops to tablets – is equipped with a unique, identifying number called a Machine Access Code (MAC). Most common wireless routers will have an option to filter access solely based on the MAC address, allowing wireless access only to devices you have preapproved and prohibiting all others. Simply add the MAC addresses into your router’s administrative settings to enable the filtering option. The process for locating the MAC address for a particular device depends on which device you intend to use. When using Windows, open a command prompt, type cmd, and press the “Enter” key. Then type ipconfig .all and hit “Enter” once again to view a detailed list of your computer’s IP settings. The MAC address will be listed as the “Physical Address,” or the six pairs of alphanumeric characters set apart by dashes. When using Mac OS X, open the system preferences panel, click the “Network” option, and select “WiFi” from the list in the left-hand column. From there, click the “Advanced” option to see the Mac Address (it will be listed under “WiFi ID”). Other devices, such as a smartphone or tablet, will take a little more detective work, but you can always refer to the owner’s manual if you are having trouble finding where the information is listed. It is possible to clone a MAC address to fool the router, so limiting access based on MAC addresses should be used along with other security precautions. Limit DHCP Dynamic Host Configuration Protocol (DHCP) allows you to limit the number of IP addresses your router can assign on your wireless network, thus limiting the amount of devices that can connect. This can be done by accessing your router’s administrative setting and updating the number of devices you want to connect (both wired and wireless). A decent hacker could bypass around the security measure, but it will most likely keep the everyday user at bay. Reduce wireless signal range It often proves more difficult to access a wireless network that’s not in range. Your router might have fantastic signal strength, but what if you live in an apartment building where other tenants are living just on the other side of the wall? Try limiting your router’s signal range to only a specified area through one or multiple options. It may take a bit of trial and error, depending on the method.
302
Volume 2, Spl. Issue 2 (2015)
Some routers will give you an option to decrease the transmitting power in the administrative settings. If possible, change the mode of the router to 802.11g instead of higher signal strengths such as 802.11n or 802.11b, or use a separate wireless channel altogether. More old-school approaches to limiting your wireless signal include placing the router in certain areas of your house, away from windows, under a bed, or in a cupboard. You can also try wrapping foil around the router antennas to better direct the wireless signal, but this can also slow your connection or even boost your signal strength depending on how you do it. Disable remote administration privileges Disabling remote administration privileges is a great way to close the door on anyone looking to access your security settings. The option should be located in your router’s administrative settings and requires all security modifications to be changed directly through a wired connection to your router.
e-ISSN: 1694-2310 | p-ISSN: 1694-2426
V. CONCLUSION It’s hard to completely secure a wireless network, but these security measures will assure that wireless signal is better protected. Use a combination (preferably all) of the steps when securing wireless networks, instead of just one or two of the methods. Always turn off wireless network when not in use as an extra precaution. Security is not something to slack on. REFERENCES [1] [2]
[3]
[4]
[5]
303
RajKumar Singh and Dr.A.K Jain, “Research Issues in Wireless,” Jalandher punjab,India, vol. 2, issue 4, April 2012. Min-kyu Choi, Rosslin John Robles, Chang-hwa Hong,Tai-hoon Kim, “Wireless Network Security: Vulnerabilities, Threats and countermeasures,” School of Multimedia, Hannam University, Daejeon, Korea, vol. 3, no. 3, July, 2008 Delan Alsoufi, Khaled Elleithy,Tariq Abuzaghleh and Ahmad Nassar, “Security in wireless sensor networks –improving the leap protocol” Department of Computer Engineering, University of Bridgeport, CT, 06604 , vol. 3, no. 3, Jun2, 2012. Prof. (Dr.) Khanna SamratVivekanand Omprakash , “Wireless home security system with mobile” Information Technology Dept ISTAR,Sardar Patel University,VV Nagar,India. http://en.wikipedia.org/wiki/Wireless_security
BUEST, Baddi
RIEECE -2015