We all use Wifi today. You know how much money it saves for your smart-phone data usage band-width. Connecting all your computers and gadgets with cables is not just history, even if you attempt it would be impractical!
Wifi being so pervasive, also brings along tremendous security implications. Come join us to look into details of Wifi security. How to secure your wifi network? How certain wifi encryption technologies can be hacked? We would prove that with live demos!
Join us to reflect on the security aspect of this technology, discuss about it and leave with more confidence about how 'secure' your WiFi access is?
We all use Wifi today. You know how much money it saves for your smart-phone data usage band-width. Connecting all your computers and gadgets with cables is not just history, even if you attempt it would be impractical!
Wifi being so pervasive, also brings along tremendous security implications. Come join us to look into details of Wifi security. How to secure your wifi network? How certain wifi encryption technologies can be hacked? We would prove that with live demos!
Join us to reflect on the security aspect of this technology, discuss about it and leave with more confidence about how 'secure' your WiFi access is?
An open, unencrypted wireless network can 'sniff' or capture and record the traffic, gain unauthorized access to internal network resources as well as to the internet, and then use the information and resources to perform disruptive or illegal acts.Many laptop computers have wireless cards pre-installed. The ability to enter a network while mobile has great benefits. However, wireless networking is prone to some security. Wireless networks relatively easy to break into, and even use wireless technology to hack into wired networks.The risks to users of wireless technology have increased as the service has become more popular.As a result, it is very important that enterprises define effective wireless security policies that guard against unauthorized access to important resources.
How to Hack WPA/WPA2 Wi Fi with Kali Linux. Kali Linux can be used for many things, but it probably is best known for its ability to penetration test, or “hack,” WPA and WPA2 networks.
Warning..!! WIFI hacking is illegal. "This ppt is only for educational purposes. I am not responsible for any consequences."
A presentation which on Wireless Network Security. It contains Introduction to wireless networking, security threats and risks, best practices on using wireless networks.
Network security presentation that briefly covers the aspect of security in networks. The slide consists of procedural steps for network security then some of the important network security components are described. To give it a practical approach, attacks on networks are also covered.
It is the powerpoint slide.It is all about WPA 3.It will make wifi more secure.This is the future of wireless security.Know how the man in the middle attack and krack attack works.Know also about RC4 encryption.
Security+ Guide to Network Security Fundamentals, 3rd Edition, by Mark Ciampa
Knowledge and skills required for Network Administrators and Information Technology professionals to be aware of security vulnerabilities, to implement security measures, to analyze an existing network environment in consideration of known security threats or risks, to defend against attacks or viruses, and to ensure data privacy and integrity. Terminology and procedures for implementation and configuration of security, including access control, authorization, encryption, packet filters, firewalls, and Virtual Private Networks (VPNs).
CNIT 120: Network Security
http://samsclass.info/120/120_S09.shtml#lecture
Policy: http://samsclass.info/policy_use.htm
Many thanks to Sam Bowne for allowing to publish these presentations.
Understanding WiFi Security Vulnerabilities and SolutionsAirTight Networks
These slides include discussion on important Wi-Fi security issues and the solutions available to address them. Enterprises which need to secure their networks from Wi-Fi threats in order to protect their information assets, prevent unauthorized use of their network, enforce no-Wi-Fi zones, and meet regulatory compliance for themselves and their clients will benefit from this discussion.
An open, unencrypted wireless network can 'sniff' or capture and record the traffic, gain unauthorized access to internal network resources as well as to the internet, and then use the information and resources to perform disruptive or illegal acts.Many laptop computers have wireless cards pre-installed. The ability to enter a network while mobile has great benefits. However, wireless networking is prone to some security. Wireless networks relatively easy to break into, and even use wireless technology to hack into wired networks.The risks to users of wireless technology have increased as the service has become more popular.As a result, it is very important that enterprises define effective wireless security policies that guard against unauthorized access to important resources.
How to Hack WPA/WPA2 Wi Fi with Kali Linux. Kali Linux can be used for many things, but it probably is best known for its ability to penetration test, or “hack,” WPA and WPA2 networks.
Warning..!! WIFI hacking is illegal. "This ppt is only for educational purposes. I am not responsible for any consequences."
A presentation which on Wireless Network Security. It contains Introduction to wireless networking, security threats and risks, best practices on using wireless networks.
Network security presentation that briefly covers the aspect of security in networks. The slide consists of procedural steps for network security then some of the important network security components are described. To give it a practical approach, attacks on networks are also covered.
It is the powerpoint slide.It is all about WPA 3.It will make wifi more secure.This is the future of wireless security.Know how the man in the middle attack and krack attack works.Know also about RC4 encryption.
Security+ Guide to Network Security Fundamentals, 3rd Edition, by Mark Ciampa
Knowledge and skills required for Network Administrators and Information Technology professionals to be aware of security vulnerabilities, to implement security measures, to analyze an existing network environment in consideration of known security threats or risks, to defend against attacks or viruses, and to ensure data privacy and integrity. Terminology and procedures for implementation and configuration of security, including access control, authorization, encryption, packet filters, firewalls, and Virtual Private Networks (VPNs).
CNIT 120: Network Security
http://samsclass.info/120/120_S09.shtml#lecture
Policy: http://samsclass.info/policy_use.htm
Many thanks to Sam Bowne for allowing to publish these presentations.
Understanding WiFi Security Vulnerabilities and SolutionsAirTight Networks
These slides include discussion on important Wi-Fi security issues and the solutions available to address them. Enterprises which need to secure their networks from Wi-Fi threats in order to protect their information assets, prevent unauthorized use of their network, enforce no-Wi-Fi zones, and meet regulatory compliance for themselves and their clients will benefit from this discussion.
Cracking of wireless networks is the defeating of security devices in Wireless local-area networks. Wireless local-area networks(WLANs) – also called Wi-Fi networks are inherently vulnerable to security lapses that wired networks Cracking is a kind of information network attack that is akin to a direct intrusion. There are two basic types of vulnerabilities associated with WLANs: those caused by poor configuration and those caused by weak encryption.
Underwater Wireless Communication is the wireless communication in which acoustic signals (waves) carry digital information through an underwater channel.
Artificial intelligence (AI) is everywhere, promising self-driving cars, medical breakthroughs, and new ways of working. But how do you separate hype from reality? How can your company apply AI to solve real business problems?
Here’s what AI learnings your business should keep in mind for 2017.
Imaging beyond the visible - An Overview of Short-Wave Infrared (SWIR) Techno...Allied Vision
Find out how Short-wave Infrared camera technology can benefit machine vision and industrial applications including semiconductor inspection, photovoltaics, glass inspection and plastic sorting (hyperspectral imaging). This presentation also discusses the differences between SWIR and CCD/CMOS cameras.
This presentation is basically is on about e waste management in india , how electronic waste is dumped in india and how waste is tackled in the world as major dumping zone of ewaste of western countries is Asia.
The ppt Sujoy and I made for the Psi Phi ( An Inter School Competition held by our School). Our Topic was Artificial Intelligence.
Credits:
Theme Images from ESET NOD32 (My Antivirus of Choice)
Backgrounds from SwimChick.net (Amazing designs here)
Credits Image from Full Metal Alchemist (One of my favorite Anime).
This Presentation will give you an overview about Artificial Intelligence : definition, advantages , disadvantages , benefits , applications .
We hope it to be useful .
Seminar Paper on Security Issues of 802.11b based on IEEE Whitepaper by Boland, H. and Mousavi, H., Carleton University, Ottawa, Ont., Canada, IEEE Canadian Conference on Electrical and Computer Engineering, 2-5 May 2004
Solving Downgrade and DoS Attack Due to the Four Ways Handshake Vulnerabiliti...Dr. Amarjeet Singh
The growing volume of attacks on the Internet has
increased the demand for more robust systems and
sophisticated tools for vulnerability analysis, intrusion
detection, forensic investigations, and possible responses.
Current hacker tools and technologies warrant reengineering
to address cyber crime and homeland security. The being
aware of the flaws on a network is necessary to secure the
information infrastructure by gathering network topology,
intelligence, internal/external vulnerability analysis, and
penetration testing. This paper has as main objective to
minimize damages and preventing the attackers from
exploiting weaknesses and vulnerabilities in the 4 ways
handshake (WIFI).
We equally present a detail study on various attacks and
some solutions to avoid or prevent such attacks in WLAN.
Living in the Jungle: Legitimate users in Legitimate Insecure Wireless NetworksChema Alonso
Trabajo realizado para la medición del grado de inseguridad de una red WiFi a la que se conecta un equipo. En él se analizan las medidas de seguridad, el riesgo y los motivos por los que existen las redes WiFi inseguras
This is the the technology which is very basic understanding on Wi- Fi technology..
What is Wi-Fi technology and how is working and also the advantages of wi-fi.....
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
4. Why security is more of a concern in
wireless?
ƒ no inherent physical protection
physical connections between devices are
replaced by logical associations
sending and receiving messages do not need
physical access to the network infrastructure
(cables, hubs, routers, etc.
5. Why security is more of a concern in
wireless?
ƒ broadcast communications
wireless usually means radio, which has a
broadcast nature
transmissions can be overheard by anyone in
range – anyone can generate transmissions,
• which will be received by other devices in
range
• which will interfere with other nearby
transmissions and may prevent their correct
reception (jamming)
6. Why security is more of a concern in
wireless?
eavesdropping is easy
injecting bogus messages into the network is
easy
replaying previously recorded messages is easy
illegitimate access to the network and its
services is easy
denial of service is easily achieved by jamming
7. Wi-Fi Security Threats
Wireless technology doesn’t remove any old security
issue, but introduces new ones
Eavesdropping
Man-in-the-middle attacks
Denial of Service
8. Eavesdropping
Easy to perform, most impossible to detect
By default , everything is transmitted in clear text
-Username, passwds,content...
-No secuirty offered by the transmission medium
Different tools available on the internet
-Network sniffers, protocol analysers
-Passwd collectors
With the right equipment, it’s possible to eavesdrop
traffic from few kilometres away
9. Man In The Middle Attack
Attacker spoofs a disassociate message from the
victim
The victim starts to look for a new access point, and
the attacker advertises his own AP on a different
channel, using he real Aps MAC address
The attacker connects to the real
AP using victim’s MAC address
10. Denial of Service
Attack on transmission regency used
Frequency jamming
Not very technical, but works
Attack on MAC layer
Spoofed deauthentication / disassociatin messages
Can target on specific user
Attacks on higher layer protocol(TCP/IP protocol)
SYN Flooding
13. Unsecured/Open
Leaving your Wi-Fi unsecured is synonymous with
leaving your front door wide open, so anyone could
simply walk in.
Leaving your Wi-Fi unsecured also transmits data
packets between users and the router in unencrypted
format, which makes these data packets easy to
intercept and read.
14. WEP
(Wired Equivalent Privacy)
Default encryption protocol
Based on RC4 encryption algorithm
with a secret key of 40 bits or 104 bits being
combined with a 24-bit Initialisation Vector(IV) to
encrypt the plaintext message M and its checksumthe ICV (Integrity check value)
The encrypted message C was therefore determined
using the following formula:
C = [ M || ICV(M) ] + [ RC4(K || IV) ]
16. What’s wrong with WEP?
IV values can be reused
IV length is too short
Weak keys are susceptible to attack
Master keys are used directly
Key Management and updating is poorly provided
Message integrity checking is ineffective
17. WPA
(Wifi Protected access)
Introduced to correct the inherent weaknesses of
WEP
Data is encrypted using the RC4 stream cipher, with a
128-bit key and a 48-bit initialization vector (IV).
One major improvement in WPA over WEP is the
Temporal Key Integrity Protocol (TKIP), which
dynamically changes keys as the system is used.
When combined with the much larger IV, this defeats
the well-known key recovery attacks on WEP.
18. TKIP packet is comprised of three parts:
1. A 128-bit temporal key that is shared by both
clients and access points.
2. An MAC address of a client device.
3. A 48-bit initialization vector describes a packet
sequence number.
19. TKIP packet
This combination guarantees various wireless clients
use different keys.
In order to be compatible with existing hardware,
TKIP uses the same encryption algorithm (RC4) as
WEP. As such, only software or firmware upgrade is
required to implement TKIP. Compared with WEP,
TKIP changes the temporal keys every10000 packets.
This dynamic distribution leaves potential hackers
little room to crack TKIP key.
In general, most security experts believe that TKIP is a
stronger encryption than WEP. However, they also
agree that TKIP should be an interim solution because
of its use of RC4 algorithm.
20. A summary of WPA benefits
In general, the security advantages of WPA over WEP
are:
• Apply stronger network access control through
mutual authentication
• Support better security technologies like 802.1X,
EAP, RADIUS and preshared keys
• Adopt dynamic keys in TKIP to establish better key
management
• Enforce data integrity through Michael Message
Integrity Check
• Provide forward compatibility to ultimate wireless
security solution, 802.11i
21. WPA potential security issues:
There are still potential encryption weaknesses in
TKIP. Fortunately, the successful crack is expected to
be heavy and expensive.
Performance may be sacrificed potentially due to a
more complex and computation intensive
authentication and encryption protocols.
22. WPA2
Wi-Fi Protected Access 2
Was ratified in 2004 as a solution to the key encryption
problems contained in WEP and WPA.
A couple of small flaws appeared in WPA2, which
require a quality of service attack or physical positioning
between the user and router, but neither of these flaws
are considered a severe threat that exposes user data.
WPA2 offers two encryption algorithms: AES and TKIP.
TKIP is essentially WPA encryption, so for the benefits of
WPA2 encryption, you should choose AES.
Another option on most routers is to choose both,
which allows the stronger security of AES when
applicable, but uses the weaker TKIP when compatibility
issues arise.
23. Wi-Fi security tips
Use a strong password.
Don't broadcast your SSID.
Use good wireless encryption.
Restrict access by MAC address.
Shut down the network when it's not being used
Monitor your network for intruders.
Cover the bases.
26. Conclusion
Wireless security has undergone major evolutions in
last 7 years. WEP, the original security standard, is
widely considered as broken. The IEEE 802.11 Group,
the Wi-Fi Alliance and major network equipment
vendors like Cisco are all working together to develop
a new level of security standards.
27. References
SANS Institute InfoSec Reading Room
www.sans.org/readingroom/whitepapers/wireless/evolution-wirelesssecurity-80211-networks-wep-wpa-80211-standards1109
802.11ac: The Fifth Generation of Wi-Fi Technical
White Paper
http://www.cisco.com/en/US/prod/collateral/wireles
s/ ps5678/ps11983/white_paper_c11713103_ns767_Networking_Solutions
White_Paper.html
In Last 2 slots of seminar we have seen .In todays seminar I’ll be emphasizing on security of wifi as security is essential part of any technologyWi-Fi can be less secure than wired connections (such as Ethernet) because an intruder does not need a physical connection.
Content for today/s seminar is
Due to wireless nature there is no inherent physical protection
Evesdropping-Eavesdropping is the act of secretly listening to the private conversation of others without their consentMITM-An attack where a user gets between the sender and receiver of information and sniffs any information being sent. DOS- a denial-of-service attack (DoS attack) is an attempt to make a machine or network resource unavailable to its intended users.
Easy to perform, lmost impossible to detectBy default , everything is transmitted in clear text-Username, passwds,content...-Nosecuirty offered by the transmission mediumDifferent tools available on the internet-Network snffers, protocol analysers-Passwd collectors
confidentiality – messages sent must be encrypted authenticity – origin of messages received must be verified replay detection – freshness of messages received must be checked integrity – modifying messages on-the-fly (during radio transmission) is not so easy, but possible … – integrity of messages received must be verified access control – access to the network services should be provided only to legitimate entities
Open- means no password. Anyone can get access .WEP uses secret keys to encrypt data. Both AP and the receiving stations must know the secret keys.WPA – It uses Temporal Key Integrity Protocol (TKIP)WPA 2-Uses the Advanced Encryption Standard (AES)
WEP (Wired Equivalent Privacy) was the default encryption protocol introduced in the first IEEE 802.11 standard back in 1999. It is based on the RC4 encryption algorithm, with a secret key of 40 bits or 104 bits being combined with a 24-bit Initialisation Vector (IV) to encrypt the plaintext message M and its checksum – the ICV (Integrity Check Value). The encrypted message C was therefore determined using the following formula: C = [ M || ICV(M) ] + [ RC4(K || IV) ] where || is a concatenation operator and + is a XOR operator
As u can see here this is a cipher text
What’s wrong with WEP?IV values can be reusedIn fact the standard does not specify that the value needs to change at all. Reusing keys is a major cryptographic weakness in any security system.IV length is too short24 bit keys allow for around 16.7 million possibilities. Sounds a lot, but on a busy network this number can be achieved in a few hours. Weak keys are susceptible to attackCertain keys value combinations, ’Weak IVs’, do not produce sufficiently random data for the first few bytes. This is the basis of the highly publicized attacks on WEP and the reason that keys can be discovered.Manufacturers often deliberately disallow Weak IV values. This is good in that it reduces the chances of a hacker capturing weak keys, but also has the effect of reducing the already limited key possibilities further, increasing the chance of reuse of keys.Master keys are used directlyFrom a cryptographic point of view using master keys directly is not at all recommended. Master keys should only be used to generate other temporary keys. WEP is seriously flawed in this respect.Key Management and updating is poorly provided forAdministration of WEP keys is not well designed and difficult to do on large networks. Users tend to change keys very infrequently which gives a potential hacker lots of time to collect enough packets to launch an attack.Message integrity checking is ineffectiveWEP does have a message integrity check but hackers can change messages and recompute a new value to match. This makes the checking ineffective against tampering.ConclusionAlthough WEP is far from an ideal security solution you should still use it. Some security is better than none. A determined attacker may be able to discover your keys given time and enough weak IVs, but that’s no reason to leave all of your doors open.
Wi-Fi Protected Access, or WPA, was introduced to correct the inherent weaknesses of WEP. Although it does improve security, it has its own problems. The encryption key used by WPA relies on a passphrase, the service set identification name (SSID), SSID length and a random value. The majority of the information used to create this 256-bit key is readily known, so a would-be hacker needs only guess the passphrase to have access to the network. Dictionary attacks systematically attempt numerous combinations of words, characters and phrases to guess this passphrase. It was determined that a passphrase comprised of less than 20 characters could be defeated.
However, WPA also presents some potential security issues:
Wireless networking can be kind of scary from a security standpoint. It opens up whole new attack vectors that were not present with wired network infrastructures. That doesn't mean you can't do it securely, however, and I aim to give you some ideas that can help you in that regard.Don't broadcast your SSID. -Use good wireless encryption. -WEP is not exactly "good" encryption. With a freely available tool like aircrack, you can sniff wireless traffic protected by WEP and crack security on that network in a matter of minutes. WPA is the current, common encryption standard you should probably be using -- though, of course, you should use something stronger as soon as it becomes available to you. Technology is advancing every day, on both sides of the encryption arms race, after all.Restrict access by MAC address. -restricting the MAC addresses allowed to connect to the network helps ensure you are not one of the "low hanging fruits" that people prefer to attack. Shut down the network when it's not being used-If you have the sort of network that does not need to be running twenty-four hours a day, seven days a week, you can reduce the availability of it to security crackers by turning it off when it isn't in use.Monitor your network for intruders. You should always make sure you have an eye on what's going on, that you are tracking attack trends. The more you know about what malicious security crackers are trying to do to your network, the better the job of defending against them you can do. Collect logs on scans and access attempts, use any of the hundreds of statistics generating tools that exist to turn those logs into more useful information, and set up your logging server to email you when something really anomalous happens. Cover the bases. Make sure you have some kind of good firewall running, whether on a wireless router or on a laptop you use to connect to wireless networks away from home
Last but not the leastI would like to point out this question in my presentation. Is Wi-fi Safe for Human?Wifi health effects on the human body are commonly dismissed because we love the convenience. Wi-Fi dangers are ignored. After all we can walk around our house with our laptop and not lose connection. No messy inconvenient cords. We can keep up with mails and conduct our work at coffee shops, airports, hotels, even hospitals. Who wants to give up ths kind of convenience?Nd yet, have we stopped to think about the fact that there was no safety testing conducted before it went into used.
Here are some of the most common symptoms people report when exposed to microwave radiation from cell phones and towers