Our sponsors and affiliates:


Join TorWUG

 

 

 Home

 About Us

 Our Sponsors

 Submit News/Articles

 Newsletter Sign-up

 Why become
  a member

 Why sponsor
 TorWUG

 Upcoming Events

 Events Archive

 White Papers
 and Articles

 Case Studies

 Newsletters Archive

 Technology Areas
   Overview

 

 Fundamentals

 

 Why Wireless

   Networks

 

 802.11 + Wi-Fi

 

 802.11 N - New Wifi
    Standard Called
    MIMO

 

 3G Cell Networks

 

 Bluetooth

 

 WiMax-802.16

 

 RFID

 

 UltraWide Band

   Applications

 

 Mobile Field Apps

   Devices

 

 PDA's

 

 RIM

 

 PALM

 

 Smart Phones

 

 Rugged Devices

 

 DeviceReviews

   Security

 

 WEP

 

 WPA

 

 802.1x

   Internet

 

 VOIP

 

 Hot Spots

 

 WAP

 

 WISP

 

 New Business Models

 News

 Development
 Tools

 Online Courses

 Discussion Forum

 Jobs in Wireless/
 Mobile Techs

 Contact Us

WEP

mobileMinds.com
Basic WLAN security has a standard known as wireless encryption protocol (WEP), which is part of the 802.11b standard and is included in most enterprise-class wireless systems. But WEP is flawed and can be easily hacked into using tools readily available on the Internet. The Wi-Fi Alliance is developing its own standard known as Wi-Fi Protective Access (WPA). A more ambitious approach is being taken with the 802.1i and 802.1x standards. The 802.1i is focusing on a new encryption protocol that improves on WEP called temporal key integrity protocol.

Wired Equivalent Privacy (WEP) is a security protocol, specified in the IEEE Wireless Fidelity ( Wi-Fi ) standard, 802.11 b, that is designed to provide a wireless local area network ( WLAN ) with a level of security and privacy comparable to what is usually expected of a wired LAN. A wired local area network ( LAN ) is generally protected by physical security mechanisms (controlled access to a building, for example) that are effective for a controlled physical environment, but may be ineffective for WLANs because radio waves are not necessarily bound by the walls containing the network. WEP seeks to establish similar protection to that offered by the wired network's physical security measures by encrypting data transmitted over the WLAN. Data encryption protects the vulnerable wireless link between clients and access points; once this measure has been taken, other typical LAN security mechanisms such as password protection, end-to-end encryption, virtual private networks ( VPNs ), and authentication can be put in place to ensure privacy.

A research group from the University of California at Berkeley recently published a report citing "major security flaws" in WEP that left WLANs using the protocol vulnerable to attacks (called wireless equivalent privacy attacks). In the course of the group's examination of the technology, they were able to intercept and modify transmissions and gain access to restricted networks. The Wireless Ethernet Compatibility Alliance (WECA) claims that WEP - which is included in many networking products - was never intended to be the sole security mechanism for a WLAN, and that, in conjunction with traditional security practices, it is very effective.

A copy of the 802.11b specification can be ordered at the IEEE Web site.

SearchSecurity.com offers links to information related to infrastructure and network security.



The Toronto Wireless User Group is a member of the Oreilly User Group Program.

Expand Beyond

Vist the Oreilly site for a 20% discount on any title.

  This site was last modified Tuesday, July 3, 2007