| The widespread use of Wi-Fi Technology is | | | | CofeeeHouse The hacker is hoping his network |
| bringing to light many security issues that may | | | | shows up first in the list, and that users will log on |
| have gone unnoticed by the average user. | | | | so quickly they won't realize what they are doing. |
| Traditional wired connections have obvious | | | | WPA (Wi-Fi Protected Access) WPA was originally |
| security precautions that most users are | | | | designed as an answer to security holes that |
| accustomed too, but extra measures must often | | | | were becoming apparent in the widely accepted |
| be used when transferring data across a wireless, | | | | WEP technology. Wi-Fi Protected Access is an |
| and sometimes public network. A wireless | | | | attempt to create standards within the wireless |
| Internet connection without security can easily | | | | security industry, and begin a move towards |
| give anyone access to your files, email, and even | | | | unifying the market. The Wi-Fi Alliance designed |
| gives others the ability to make changes to your | | | | the technology and a scattered market is |
| computer. These types of security problems will | | | | beginning to see a unified method of security on |
| probably have little impact on most users. | | | | the horizon. The two main differentiators between |
| Occasionally surfing the web at a coffee shop or | | | | WPA and WEP are key size and the number of |
| having a wireless adapter set up on a printer will | | | | packets that actually carry the key. The number |
| likely not bring down the house. To a business | | | | of characters in a WPA key is considerably more |
| holes in security can cost time, money, and could | | | | than a WEP key, and it would taking sifting |
| possibly be a legal violation. A badly secured | | | | through many more data packets to actually put |
| Wireless Internet connection is an open door for | | | | a WPA key together. WEP (Wired Equivalent |
| hackers to use the technology to cause general | | | | Protection): Wired Equivalent Protection uses |
| mischief or to even commit crimes. The most | | | | encryption to protect data as it travels via radio |
| common methods currently in use to secure a | | | | waves from transceivers. This means that when |
| Wi-Fi connection are SSIDs, Wi-Fi Protected | | | | you send your email from your laptop it becomes |
| Access, and WEP. SSID (Service Set Identifiers) | | | | encrypted, is sent out wirelessly on radio carrier |
| Every data packet sent over a Wi-Fi connection | | | | waves, is received by a wireless access point, is |
| has a specific identifier attached to it. This | | | | then decrypted and sent on to the Internet as |
| identifier, or SSID, can recognize particular | | | | any wired connection would. As the name implies |
| wireless networks and everyone accessing a | | | | this security was designed to provide the same |
| particular network must have the correct Service | | | | level of security a wired connection would. This is |
| Set Identifier. From a security standpoint SSID | | | | not the case, but the security is usually strong |
| alone offer almost no protection, but it does give | | | | enough for most users. The reason WEP has |
| a network a specific name making is clear what | | | | never become as secure as a wired network is |
| network a user in connected too. Knowing where | | | | there is simply no way around the fact that |
| you are connected too has become increasingly | | | | anyone can intercept radio wave and get the |
| important due in part to a wireless internet attack | | | | data out of them. The level of encryption that |
| called The Evil Twin. While this may sound like | | | | the data has will mean the information is |
| something Dr. Evil would use, it's a common | | | | meaningless unless the interceptor has the WEP |
| hacker technique. The way it works is a hacker | | | | key. The problem here is that all data packets |
| takes in a mobile wireless access point, usually set | | | | carry a piece of the key and that in time, with |
| up on a laptop, and then enters a public area | | | | enough packets, the key can be produced. This is |
| where an access point already exists. If no SSID | | | | a lot of trouble to find out where a user has been |
| is set up, then someone may actually log on to | | | | surfing, but maybe not too much to acquire |
| the hacker's computer giving them access to all | | | | hundreds of credit card numbers. Again if you are |
| data sent and received. This is a great way to | | | | not targeted by a hacker, WEP is surely enough |
| get access to usernames and passwords. Even | | | | protection. WEP is currently installed on almost all |
| with SSID a hacker is going to name their | | | | wireless routers available to consumers. |
| network something confusingly similar. If you are | | | | Jon Norwood is a managing partner of the High |
| at your favorite coffee shop and are about to log | | | | Speed Internet Access Guide, a site dedicated to |
| on, check the names of the networks carefully. | | | | providing reviews of broadband Internet service |
| Be careful if you see two possible networks with | | | | providers, as well as information on wireless |
| very similar spelling like these: - CoffeeHouse - | | | | Internet providers and satellite Internet. |