WIRELESS SECURITY CONCERNS INTERNET Server Muni Wi-Fi or Neighbors Network Edge Blurred New Attack Vectors ‘Behind’ the Firewall 1 Rogue AP Connected to Network (Network Breach) Hacker 3 Leaked Wired Traffic & Insertion (Data Leakage) Hotspot Evil Twin Mobile User 2 Hotspot Phishing (Data Leakage) 5 Users Bypassing Network Security Controls (Data Leakage/Network Backdoor) 4 Non-Compliant AP (Network Breach/Data Leakage/ Data Compromise)
MOBILE WORKERS VULNERABILITIES Do I have wired & wireless on at the same time? Is my laptop probing for SSIDs not on the safe list? Are my employees using Municipal Wi-Fi? Am I connected to an insecure access point? Am I connected to a real hotspot connection? Am I connected to someone nearby in ad-hoc mode?
Comparing packets from Access Points versus Wireless Clients
PalmPre sending beacons & probe responses 3 Naïve user Associates with Fake AP Laptop sends Probe Request AP provides IP address to User Scan laptop for vulnerabilities & compromise it 5 Use station as a launch pad 6 User Station Corporate Network Intruder Laptop 2 Fake AP responds with Probe Response
SUMMARY OF 802.11 VULNERABILITIES Type Attacks Tools Reconnaissance
Setup at the DOS Prompt & Share either a Wired or Wireless connection
The user can share their own desktop (like an ad-hoc network) & the user can share their network connection with others
Wireless network may use authentication and encryption, BUT the user can share that connection with others, allowing those users to connect to the corporate network with weaker authentication & encryption
Remnants on wireless clients (registry, saved wireless networks, etc.)
RF Analysis, Heat Maps/Location Tracking
Live analysis on IPS, WIPS, Firewalls, etc.
Roaming behavior (AP to AP, or client to client )
Sources for Analyzing Wireless Attacks
MOTOROLA AIRDEFENSE SOLUTION Ensure Security and Comply with Regulatory & Industry Requirements Centrally Control and Monitor WLAN Infrastructure with One Management Console Infrastructure Management Network Assurance Managed Services Advanced Services Solutions for Any WLAN Allows Remote Troubleshooting and Proactive Analysis of Wireless Issues Security & Compliance