Wifi Security
Upcoming SlideShare
Loading in...5
×
 

Wifi Security

on

  • 3,479 views

Fast made slideshow for presenting in lecture.

Fast made slideshow for presenting in lecture.

Statistics

Views

Total Views
3,479
Views on SlideShare
3,470
Embed Views
9

Actions

Likes
3
Downloads
244
Comments
0

2 Embeds 9

http://www.linkedin.com 6
http://www.slideshare.net 3

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Wifi Security Wifi Security Presentation Transcript

  • Wireless Security
    • Agris Ameriks 2008
  • WI-FI
    • Wi-Fi is a wireless networking technology used across the globe.
    • Wi-Fi refers to any system that uses the 802.11 standard, which was developed by the Institute of Electrical and Electronics Engineers (IEEE) and released in 1997.
    • The term Wi-Fi, which is alternatively spelled WiFi, Wi-fi, Wifi, or wifi, was pushed by the Wi-Fi Alliance , a trade group that pioneered commercialization of the technology.
    Wi‐Fi®, Wi‐Fi Alliance®, the Wi‐Fi logo, are registered trademarks of the Wi‐Fi Alliance
  • 802.11
    • 802.11 is a set of standards for  wireless local area network (WLAN)  computer communication,  developed by the IEEE LAN/MAN  Standards Committee (IEEE 802) in  the 5 GHz and 2.4 GHz public  spectrum bands.
  • Wi-Fi Security
    • Outsiders can sometimes  get into your wireless networks fast and easily
  • Private Wi-Fi securing
  • Securing a wireless network
    • Possible steps towards securing a wireless network include:
      • All wireless LAN devices need to be secured
      • All users of the wireless network need to be educated in wireless network security
      • All wireless networks need to be actively monitored for weaknesses and breaches
  • You are using WEP? You are damn stupid. You are damn stupid.
    • WEP is a deprecated algorithm to secure IEEE 802.11 wireless networks.
    • It is possible to crack and get code very fast depending on traffic
    • Hackers use Aircrack-ng and they are having fun!
  • Use WPA or WPA2 instead
    • Protocol was created in response to several serious weaknesses researchers had found in the previous system, Wired Equivalent Privacy (WEP).
    • Hackers can crack password only using Brute Force Attack.
      • So don’t use WPA passwords like “password”, “administrator” and any other password you can find in dictionary.
  • Public Wi-Fi Spot Securing
  • You think that SSL is safe? Kind of... :)
    • It's completely possible to sniff out https (ssl encrypted)
    • Using MITM (man in the middle) attacks
    • Route all of your https traffic to MITM (e.g. using ARP spoofing)
    • Intercept all traffic from the web server
    • Send you a fake self signed certificate
    • And once you accept it thinking the site is secure, everything you do goes through MITM first
      • http://www.youtube.com/watch?v=Aak6-B3JORE
    Using Backtrack and Ettercap
  • How I secure my traffic? SSH tunneling SSH tunneling
    • I have installed Ubuntu server with SSH and squid proxy at home with fixed IP
    • I use small app on OS X SSH Tunnel Manager and tunnel proxy port to localhost:6023
    • In firefox I use proxy localhost:6023
    • On Windows XP I use Tutty to do the same thing
  • Pay for security
    • Pay for VPN service
      • www.witopia.net - $39.99/year
      • www.publicvpn.com - $6.95/month OR $69.95/year
    • Pay for tunneling service
      • www.secure-tunnel.com - $9.95/month OR $99.95/year
  • Latvian Law
    • Latvian Criminal Law § 241.
    • You will get penalty if you break any kind of security
    • http://www.likumi.lv/doc.php?id=88966
  • References
    • Used materials and links:
      • http://en.wikipedia.org/wiki/Wireless_security
      • http://www.slideshare.net/rudivd/wireless-security-416902
      • http://www.slideshare.net/y3dips/wifi-259965
      • http://www.slideshare.net/som.mukhopadhyay/wifi-security-explained
      • http://webworkerdaily.com/2007/08/15/keeping-your-public-wi-fi-sessions-secure/
      • http://www.techsoup.org/learningcenter/connections/page5998.cfm
      • http://www.dslreports.com/forum/r21012040-Public-WiFi-Wireless-Sniffing-SSL
      • http://www.youtube.com/watch?v=Aak6-B3JORE
      • http://en.wikipedia.org/wiki/ARP_spoofing#ARP_spoofing_tools