Wireless Security Agris Ameriks 2008

Agris Ameriks 2008

WI-FI Wi-Fi is a wireless networking technology used across the globe. Wi-Fi refers to any system that uses the 802.11 standard, which was developed by the Institute of Electrical and Electronics Engineers (IEEE) and released in 1997. The term Wi-Fi, which is alternatively spelled WiFi, Wi-fi, Wifi, or wifi, was pushed by the Wi-Fi Alliance , a trade group that pioneered commercialization of the technology. Wi‐Fi®, Wi‐Fi Alliance®, the Wi‐Fi logo, are registered trademarks of the Wi‐Fi Alliance

Wi-Fi is a wireless networking technology used across the globe.

Wi-Fi refers to any system that uses the 802.11 standard, which was developed by the Institute of Electrical and Electronics Engineers (IEEE) and released in 1997.

The term Wi-Fi, which is alternatively spelled WiFi, Wi-fi, Wifi, or wifi, was pushed by the Wi-Fi Alliance , a trade group that pioneered commercialization of the technology.

802.11 802.11 is a set of standards for wireless local area network (WLAN) computer communication, developed by the IEEE LAN/MAN Standards Committee (IEEE 802) in the 5 GHz and 2.4 GHz public spectrum bands.

802.11 is a set of standards for wireless local area network (WLAN) computer communication, developed by the IEEE LAN/MAN Standards Committee (IEEE 802) in the 5 GHz and 2.4 GHz public spectrum bands.

Wi-Fi Security Outsiders can sometimes get into your wireless networks fast and easily

Outsiders can sometimes get into your wireless networks fast and easily

Private Wi-Fi securing

Securing a wireless network Possible steps towards securing a wireless network include: All wireless LAN devices need to be secured All users of the wireless network need to be educated in wireless network security All wireless networks need to be actively monitored for weaknesses and breaches

Possible steps towards securing a wireless network include:

All wireless LAN devices need to be secured

All users of the wireless network need to be educated in wireless network security

All wireless networks need to be actively monitored for weaknesses and breaches

You are using WEP? You are damn stupid. You are damn stupid. WEP is a deprecated algorithm to secure IEEE 802.11 wireless networks. It is possible to crack and get code very fast depending on traffic Hackers use Aircrack-ng and they are having fun!

WEP is a deprecated algorithm to secure IEEE 802.11 wireless networks.

It is possible to crack and get code very fast depending on traffic

Hackers use Aircrack-ng and they are having fun!

Use WPA or WPA2 instead Protocol was created in response to several serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP). Hackers can crack password only using Brute Force Attack. So don’t use WPA passwords like “password”, “administrator” and any other password you can find in dictionary.

Protocol was created in response to several serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP).

Hackers can crack password only using Brute Force Attack.

So don’t use WPA passwords like “password”, “administrator” and any other password you can find in dictionary.

Public Wi-Fi Spot Securing

You think that SSL is safe? Kind of... :) It's completely possible to sniff out https (ssl encrypted) Using MITM (man in the middle) attacks Route all of your https traffic to MITM (e.g. using ARP spoofing) Intercept all traffic from the web server Send you a fake self signed certificate And once you accept it thinking the site is secure, everything you do goes through MITM first http://www.youtube.com/watch?v=Aak6-B3JORE Using Backtrack and Ettercap

It's completely possible to sniff out https (ssl encrypted)

Using MITM (man in the middle) attacks

Route all of your https traffic to MITM (e.g. using ARP spoofing)

Intercept all traffic from the web server

Send you a fake self signed certificate

And once you accept it thinking the site is secure, everything you do goes through MITM first

http://www.youtube.com/watch?v=Aak6-B3JORE

How I secure my traffic? SSH tunneling SSH tunneling I have installed Ubuntu server with SSH and squid proxy at home with fixed IP I use small app on OS X SSH Tunnel Manager and tunnel proxy port to localhost:6023 In firefox I use proxy localhost:6023 On Windows XP I use Tutty to do the same thing

I have installed Ubuntu server with SSH and squid proxy at home with fixed IP

I use small app on OS X SSH Tunnel Manager and tunnel proxy port to localhost:6023

In firefox I use proxy localhost:6023

On Windows XP I use Tutty to do the same thing

Pay for security Pay for VPN service www.witopia.net - $39.99/year www.publicvpn.com - $6.95/month OR $69.95/year Pay for tunneling service www.secure-tunnel.com - $9.95/month OR $99.95/year

Pay for VPN service

www.witopia.net - $39.99/year

www.publicvpn.com - $6.95/month OR $69.95/year

Pay for tunneling service

www.secure-tunnel.com - $9.95/month OR $99.95/year

Latvian Law Latvian Criminal Law § 241. You will get penalty if you break any kind of security http://www.likumi.lv/doc.php?id=88966

Latvian Criminal Law § 241.

You will get penalty if you break any kind of security

http://www.likumi.lv/doc.php?id=88966

References Used materials and links: http://en.wikipedia.org/wiki/Wireless_security http://www.slideshare.net/rudivd/wireless-security-416902 http://www.slideshare.net/y3dips/wifi-259965 http://www.slideshare.net/som.mukhopadhyay/wifi-security-explained http://webworkerdaily.com/2007/08/15/keeping-your-public-wi-fi-sessions-secure/ http://www.techsoup.org/learningcenter/connections/page5998.cfm http://www.dslreports.com/forum/r21012040-Public-WiFi-Wireless-Sniffing-SSL http://www.youtube.com/watch?v=Aak6-B3JORE http://en.wikipedia.org/wiki/ARP_spoofing#ARP_spoofing_tools

Used materials and links:

http://en.wikipedia.org/wiki/Wireless_security

http://www.slideshare.net/rudivd/wireless-security-416902

http://www.slideshare.net/y3dips/wifi-259965

http://www.slideshare.net/som.mukhopadhyay/wifi-security-explained

http://webworkerdaily.com/2007/08/15/keeping-your-public-wi-fi-sessions-secure/

http://www.techsoup.org/learningcenter/connections/page5998.cfm

http://www.dslreports.com/forum/r21012040-Public-WiFi-Wireless-Sniffing-SSL

http://www.youtube.com/watch?v=Aak6-B3JORE

http://en.wikipedia.org/wiki/ARP_spoofing#ARP_spoofing_tools