Download Session 7 new

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
Document related concepts
no text concepts found
Transcript 
Session 7
Wireless Security
7-1
Wireless LANs (WLANs)
• Use radio or infrared frequencies to transmit
signals through the air (instead of cables)
• Basic Categories
– Use of Radio frequencies (FOCUS of this chapter)
• 802.1x family of standards (aka, Wi-Fi)
– Use of Infrared frequencies (Optical transmission)
• Wi-Fi grown in popularity
– Eliminates cabling
– Facilitates network access from a variety of locations
– Facilitates for mobile workers (as in a hospital)
– Used in 90 percent of companies
7-2
Principal WLANs Technologies
• WI-FI
– IEEE 802.11b
• Standardization started after .11a, but finished
before, more commonly used than .11a
– IEEE 802.11a
• First attempt to standardization of WLANs; more
complicated than .11b
– IEEE 802.11g
- 802.11i – Wifi Protected Access using 256 bit
key
• Bluetooth
– Also an IEEE standard 802.15
7-3
Components of WLANs
• Network Interface Cards
–
–
–
–
Available for laptops as PCMCIA cards
Available for desktops as standard cards
Many laptops come with WLAN cards built in
About 100-500 feet max transmission range
• Access Points (APs)
– Used instead of hubs; act as a repeater
• Must hear all computers in WLAN
– Message transmitted twice
» Sender to AP, then AP to receiver
7-4
More on the APs and NICs
• 3 separate channels available for 802.11b
– All devices using an AP must use the same channel
• WLAN functions as a shared media LAN
– Reduces the interference
– Users can roam from AP to AP
• Initially NIC selects a channel (thus an AP)
– Based on “strength of signal” from an AP
• During roaming, if NIC sees another AP with a
stronger signal, attaches itself to this AP
• Usually a set of APs installed to provide
geographical coverage and meet traffic needs
– NICs selects a less busy channel if its current channel
becomes busy (too many users)
7-5
WLAN Topology
Use the same radio
frequencies, so
take turns using
the network
Same as Ethernet
• Physical star
• Logical bus
10Base-T or
100Base-T
Uses a NIC that
transmits radio
signals to the AP
A wireless Access Point (AP) connected
into an Ethernet Switch
7-6
Antennas used in WLANs
• Omni directional antennas
– Transmit in all directions simultaneously
– Used on most WLANs
• Dipole antenna (rubber duck)
– Transmits in all direction (vertical, horizontal, up,
down)
• Directional antennas
– Project signal only in one direction
• Focused area; stronger signal; farther ranges
– Most often used on inside of an exterior wall
• To reduce the security issue
– A potential problem with WLANs
7-7
Types of Antennas
7-8
WLAN Radio Frequencies
• WLANs use radio transmissions to send data
between the NIC and the AP
• Most countries use the 2.4 GHz range and the 5
GHz range
• The larger the frequency range, the greater the
bandwidth, or capacity
• It is important to ensure that VLAN AP’s do not
conflict with each other
• Therefore, each AP is set up to transmit on a
different part of the 2.4 or 5 GHz frequency range
7-9
A WLAN Using Different Channels
7 - 10
Bluetooth (IEEE 802.15)
• A standard for Wireless Personal Area Network
(WPAN)
– Provides networking in a very small area
• Up to 10 meters (current generation)
• Up to 100 meters (next generation)
– Includes small (1/3 of an inch square) and cheap devices
designed to
• Replace short distance cabling between devices
– Keyboards, mouse, handsets, PDAs, etc
– Provides a basic data rate of 1 Mbps
• Can be divided into several voice and data channels
7 - 11
Multistory WLAN Design
• Must include
– Usual horizontal mapping, and
– Vertical mapping to minimize interference from APs on
different floors
Copyright 2007 John Wiley & Sons, Inc
7 - 12
WLAN Security
• Especially important for wireless network
– Anyone within the range can use the WLAN
• Finding a WLAN
– Move around with WLAN equipped device and
try to pick up the signal
– Use special purpose software tools to learn
about WLAN you discovered
• Wardriving – this type reconnaissance
• Warchalking – writing symbols on walls to
indicate presence of an unsecure WLAN
Copyright 2007 John Wiley & Sons, Inc
7 - 13
802.11 I WPA
• Wi-Fi Protected Access (WPA)
– new standard
– longer key, changed for every packet
• 802.11i
– uses AES encryption
- WPA 2: The actual key used for message
encryption is a derivative of the access point’s
assigned key, a random number generated by
the access point, as well as the MAC addresses
of the access point and the remote device.
Copyright 2007 John Wiley & Sons, Inc
7 - 14
Smart Phone Security
• BBM uses a common symmetric key, low
security. Better than plain text.
• Blackberry Enterprise Server uses a
unique Triple DES or AES key for each
device. RIM does not have the key.
• Other smart phones using Exchange
Active Syn can enforce symmetric
encryption.
7 - 15
Implications for Management
• WLANs becoming common place
– Access to internal data, any time, any place
• Better protection of corporate networks
– Public access through WLAN hotspots
• Competition and overlap with cell phone
technologies
– New cell phone technologies (faster, longer ranges)
– Drastic price drops of WLAN devices
• Widespread Internet access via multiplicity of
devices (PDAs, etc,)
– Development of new Internet applications
• New companies created; some old ones out of
business
– Drastic increase in the amount of data flowing around
Copyright 2007 John Wiley & Sons, Inc
7 - 16
Related documents
354603Specification
354603Specification
No Slide Title
No Slide Title
MPLS Based Web Switching
MPLS Based Web Switching
network - CCIT131
network - CCIT131
TQP787011 数据资料DataSheet下载
TQP787011 数据资料DataSheet下载
Sleep Apnea - University of Minnesota
Sleep Apnea - University of Minnesota
PPT_692430028
PPT_692430028
Efficient Mobility Management for Vertical Handoff between WWAN
Efficient Mobility Management for Vertical Handoff between WWAN
Frequently Used Terms PC Hardware RAM – Random Access
Frequently Used Terms PC Hardware RAM – Random Access
Enterprise Wireless LAN (WLAN) Management
Enterprise Wireless LAN (WLAN) Management
- IEEE Mentor
- IEEE Mentor
High Availability WLANs Based on Software-Defined
High Availability WLANs Based on Software-Defined