North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: Custom Wireless Solution

  • From: Mike Schoenecker
  • Date: Wed Apr 25 18:56:08 2001

-----Original Message-----
From: Lincoln Dale [mailto:[email protected]]
Sent: Monday, April 23, 2001 3:11 AM
To: Mohan Sundar
Cc: Dominic J. Eidson; Wojtek Zlobicki; [email protected]
Subject: Re: Custom Wireless Solution



At 11:57 PM 22/04/2001 -0700, Mohan Sundar wrote:
>How secure is this connection? Does 802.11
>provide security implicitly?

802.11b has some degree of inherent security.
one can apply WEP (Wireless Equivalency Protocol) to encryption the data, 
but even that has been shown to be vulnerable 
(http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html)

there are a few alternatives that can be used to make it more secure:
  [1] deploy a setup whereby one has per-user dynamically-changing WEP
      keys.  details on how one vendor can do this are at:
 
http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/1281_pp.htm
      details on how to actually configure it is at:
 
http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/accsspts/a
p350scg/ap350ch3.htm#xtocid586920

  [2] don't trust the link layer, and encrypt everything you send.
      this could be as simplistic as adding MAC-address filters to your
      access-points and building a tunnel of some kind (eg. IPsec, or
      even as simplistic as SSH port-forwarding).


if one is prone to be paranoia, using both [1] and [2] probably makes sense.


cheers,

lincoln.


Attachment: Metricom Ricochet Advantage Technology Overview.url
Description: Binary data

Attachment: AeroComm Inc The Worldwide Leader in Affordable Complete Wireless Solutions.url
Description: Binary data

Attachment: Proxim Home Page.url
Description: Binary data

Attachment: Stratum Wirefree Bridge Family.url
Description: Binary data