Yet all is not bliss. The inherent insecurity of wireless devices and networks would make any hacker drool.

This potential for security breaches through Wi-Fi networks is the driving force behind the IEEE developing security standards for Wi-Fi. The current 802.11 standard protocol for wireless networks is Wired Equivalent Privacy (WEP). WEP is designed to provide the “equivalent” security available in wireline networks by encrypting the data transmitted over the airwaves. 128-bit WEP encryption is not as strong as was anticipated when initially introduced. While stronger than its 40-bit predecessor, 128-bit WEP includes a 24-bit initializing vector, leaving only a 104-bit key – significantly weaker than its name would imply.

WEP provides data encryption, but it does not provide user authentication. The IEEE’s 802.1x is a standard that can be used in conjunction with WEP to provide a strong user authentication framework and a centralized security management model.

Extensible Authentication Protocol (EAP) acts as the upper-layer authentication protocol used by 802.1x to allow users to authenticate to a central server. Using EAP, an individual requests a connection to the Wi-Fi network through an access point. The identity of that individual is sent by the access point to an authentication server. An authentication server, such as RADIUS, communicates with the access point and verifies the authentication of the user before permitting use of its resources.

Yet viruses and worms can bypass these network security measures if the user is granted permission to use the network and his or her device was infected while off company premises. And since sensitive company data is cached on these devices and frequently leaves the office everyday with the devices, the information is at risk at off-site locations.

Compounding these security risks is the emergence of more and more powerful wireless devices, giving malicious users an enticingly robust platform for hosting their code. The arrival of increasingly sophisticated wireless devices such as Java- or Symbian-enabled systems and hybrid wireless devices that include PDA, GSM phone, Internet access, and always-on email capabilities offer a fresh challenge to hackers. They also pose an interesting test to software developers who are tasked with writing more concise code to create compact applications for these small footprint units.

Attacks Already Being Made

In June 2000 Internet-enabled cell phone customers of Spain’s largest cell phone provider were hit with the Timofonica virus causing infected PCs to send text messages to Telefonica mobile phone customers.

PDA exploits were not far behind. Two months after the Timofonica cell phone virus incident, the first Trojan horse for the Palm OS appeared. This Trojan horse, dubbed Liberty Crack, was followed less than a month later by yet another Trojan horse, called Palm Vapor. The introduction of PDA-specific malicious code represented a threat not only to PDAs but it also called attention to the potential spread of such code throughout a company as users synchronized their handheld devices with their desktop or laptop systems.

Wi-Fi Policies

While it is impossible to guarantee a 100 percent secure wireless network, combining wireless security technologies with smart user policies can mitigate most of the risks. This involves following basic wireless security practices using enterprise-class and client protection technologies:

1. Establishing an Enterprise-Wide Strategy – When developing an enterprise-wide strategy for wireless network deployment and usage, several areas need to be addressed including determining the business need, integrating wireless policies into existing IT policies, clearly defining wireless network ownership, protecting the existing infrastructure and educating the users on the network regarding the wireless policies.

Unfortunately, humans continue to be the weakest link. Educating employees and partners about wireless security and how to configure their devices is critical to a secure network.

2. Wi-Fi Security Best Practices – Administrators are not without blame. Frequently administrators erroneously assume that whatever they buy already comes secured. Several best practices for wireless networks can be adhered to ensuring the security of the network They include the following

• Establish wireless LAN security policies

• Design the network for security

• Logically separate internal networks

• Enable VPN access

• Remove unnecessary protocols

• Restrict access point connections

• Protect individual wireless devices

• Change the access point’s default user name and password

• Scan for rogue access points

• Enable 128-bit (or greater) WEP

• “War Drive” your own parking lot looking for leaks

3. Implement Strong Security Technologies – Use security solutions to secure wireless networks at the gateways, servers, and clients. More and more security products are being enhanced to address 802.11 wireless-specific vulnerabilities and threats. Security software needs to include firewalls, VPNs, network and host IDSs, antivirus software, vulnerability assessment tools, and policy compliance tools to help measure an enterprise for compliance to the specific industry regulations.

While wireless networks will almost certainly be a part of the future, they will require additional security precautions that are currently being overlooked by many corporations. Thankfully, the threats inherent in wireless networks can be minimized by simply educating employees and taking a few extra steps to lock down open doors and shore up potentially vulnerable spots.

Mike Brookbank is director of product management for the Enterprise Division at Symantec Corporation. In this position, he oversees the business management for the remote communications support and gateway security categories of products. Mike can be reached at mbrookbank@symantec.com.