Government Technology

    Digital Communities
    Industry Members

  • Click sponsor logos for whitepapers, case studies, and best practices.
  • McAfee

The Lion and the Kimono: Wireless Insecurity


January 31, 2006 By

GTC's Tuesday morning training classes included a continuation of Security Boot Camp. Ira Victor, managing partner of Data Clone Labs' Information Security and Compliance Practice, briefed attendees on wireless standards and security issues -- from how a hacker can grab logon credentials from an unsuspecting hot spot user, and use them for his or her own purposes, to "CIA," the need to assure "confidentiality," "integrity" and "availability."

Ira Victor
Among the 802.11 standards, said Victor, "G" is backwards compatible to "B" but if you are running a G network and allow B card users onto it, the entire network will slow down. To the Bluetooth-enabled "Borg earpiece wearers" in the audience, Victor cautioned them to turn them off when not in immediate use, as they can be hacked through walls -- as the members of the British Parliament found out -- by someone up to 30 feet away. The problem, said Victor, is that Bluetooth can have up to seven connections at once, a bad thing for confidentiality, and Bluetooth security is very weak. A recent exploit of a hacker revealed that that "Bluesnarfing" -- picking up Bluetooth signals in public places -- grabbed address books and calendars of Members of Parliament. And in 17 minutes in a train station a hacker cracked 39 phones, and downloaded address books in an average of 15 seconds each.

And to increase the paranoia of those with wireless LANS, Victor went into some detail about their vulnerabilities, including:

  • Hijacking
  • Rogue access points
  • Sniffing traffic
  • Denial of service attacks
  • War spammers
  • and malware that bypasses firewalls
Poorly configured wireless LANs, said Victor, allow rogues to connect, and once inside, it's like an M and M: "hard on the outside and soft inside."

Throughout the presentation, Victor emphasized the old joke about two men running from a hungry lion. To survive, one man needn't run faster than the lion, just faster than the other man. And so it is with security, he said. Hackers want access to find pornography, send spam or viruses, get information such as credit card numbers or passwords, etc. etc. If a rogue is looking for a network to crack into for whatever purpose, your network or device doesn't have to be perfect, just better protected than the multitude of others that might also be available.

For those using WEP for security, Victor said it is very weak with tools to crack it readily available on the Web. WPA (Wi-Fi Protection Access) is much better, he said, but can still be cracked, especially if the user employs short or dictionary-word passwords.

What Works?

After a long talk about the vulnerabilities, Victor offered some hope to his wireless-bedecked audience. 3Com sells a wireless firewall about the size of a pack of cigarettes. It supports WEP and WPA. A Web site: http://www.grc.com/password supplies long randomly generated passwords that can be cut and pasted in that are very difficult to crack. He also offered a number of suggestions to improve wireless security:

  • Update the firmware and drivers on your access points and wireless cards
  • Install and configure the wireless access points and network cards
  • Reset administrators passwords to a strong password phrase, block wireless administrators
  • Enable WEP/WPA with a strong password phrase
  • Filter media access control addresses
  • set up access points so they are shut off at night
  • "War walk" to check the range of your wireless transmitter and adjust access point transmission power
  • Consider VPN and proactive security measures like force field wireless -- paint and window film that reflects Wi Fi signals.
However, he said, security is a journey not a destination, and there are no silver security bullets, especially with regard to wireless.

What's next? Victor said that RFID will soon boom, and will appear on a wide variety of products and pharmaceuticals. This will bring up new privacy issues. For example, empty medicine bottles in the trash that reveal the homeowner's medical problems. And new wireless devices will combine cellular technology with wireless Internet capabilities. While Bluetooth creates Personal Area Networks, "piconets" will provide networks of just a few inches. All of this, he said, will "open the kimono" without proper security.


| More

Comments

Add Your Comment

You are solely responsible for the content of your comments. We reserve the right to remove comments that are considered profane, vulgar, obscene, factually inaccurate, off-topic, or considered a personal attack.

In Our Library

White Papers | Exclusives Reports | Webinar Archives | Best Practices and Case Studies
Digital Cities & Counties Survey: Best Practices Quick Reference Guide
This Best Practices Quick Reference Guide is a compilation of examples from the 2013 Digital Cities and Counties Surveys showcasing the innovative ways local governments are using technological tools to respond to the needs of their communities. It is our hope that by calling attention to just a few examples from cities and counties of all sizes, we will encourage further collaboration and spark additional creativity in local government service delivery.
Wireless Reporting Takes Pain (& Wait) out of Voting
In Michigan and Minnesota counties, wireless voting via the AT&T network has brought speed, efficiency and accuracy to elections - another illustration of how mobility and machine-to-machine (M2M) technology help governments to bring superior services and communication to constituents.
Why Would a City Proclaim Their Data “Open by Default?”
The City of Palo Alto, California, a 2013 Center for Digital Government Digital City Survey winner, has officially proclaimed “open” to be the default setting for all city data. Are they courageous or crazy?
View All