Wi-Fi Security Broken Down and On the Ropes

Wed Oct 31, 2007 2:57PM EDT

See Comments (5)

More bad news for Wi-Fi's perpetually troubled security system. Another round of hacks and attacks have left the networking protocol all but wide open to attacks from those snooping in from the outside.

Says one researcher in this BBC story, "WEP as a security measure is so broken that your (and everyone else's) kid sister can easily circumvent it." Kid sister? That may be hyperbole, but any remotely sophisticated hacker can download easily accessible programs on the internet to break Wi-Fi security in a matter of minutes. Such attacks date all the way back to 2001, but the latest decodes WEP keys faster than ever. Though the story doesn't mention it, WEP's successor, WPA, is also now at some risk from the same attacks.

Despite its age, WEP is still in wide use because of the large amount of old equipment on the market. Some of it can be upgraded to support more recent security standards, but much "legacy" equipment can't. If one device on a network requires WEP, then all devices must use it, which puts the entire network at risk.

The latest security standard, WPA2, was rolled out way back in 2004. It still has very poor support in even newer networking components.

So what should you do? If you're concerned about wireless eavesdroppers, you might consider upgrading any very old equipment to take advantage of at least WPA and preferably WPA2 security. As well, update firmware and drivers where you can in order to save money. Whatever you do, try to get off of WEP as soon as you can.

LINK: Wi-fi security system is 'broken' 

Comments on Wi-Fi Security Broken Down and On the Ropes

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 1 Posted by firmie02 on Thu Sep 3, 2009 4:00PM EDT Report Abuse

    You can also limit by MAC address you gets access into your WLAN.

  • 2 Posted by rogueist on Thu Sep 3, 2009 8:49PM EDT Report Abuse

    WPA can be broken in under 10 seconds. WEP still takes longer than that to crack. For all the hype, WPA is worse than WEP. But as someone mentioned, a great way to limit things is to limit connections by MAC address. There are other tricks that can be done as well to limit the parts of the network any one connection has access to, or limiting them to only internet access through those points, and the company network through a wired connection. Key encoders and tunnelling can also be used, so non-keyed non-tunneled connections get nowhere. Many unique solutions to these problems.

  • 3 Posted by agustin2489 on Thu Sep 3, 2009 2:47PM EDT Report Abuse

    It is always a good idea to use multiple layers of security. MAC filtering, WPA security, limiting DHCP access (the number of devices with unique IP addresses on a network), and using time limits (if need be) can all be used on a standard Linksys. All that helps to make a network more secure than just using one of those components.

  • 4 Posted by georock@swbell.net on Thu Sep 3, 2009 4:08PM EDT Report Abuse

    I have an easy permanent solution that is guaranteed to end wi-fi security woes forever. Get off your lazy butts and install wired connections wherever you need them. Works like a charm for me.

  • 5 Posted by justin4jesus@verizon.net on Thu Sep 3, 2009 4:44PM EDT Report Abuse

    This is all such old news I can't believe it's actually being used for filler material between decent articles! Does anybody out there still think wireless (especially WEP encryption) is secure? Even your kid sister outta know by now.

More Posts: 1

Post a Comment

Sign In to Post a Comment

My Tech

Please enable your browser's cookies to activate the My Tech column.

Also on Yahoo! Tech

Computers Home Office Wi-Fi & Networking Phones & PDAs Cameras & Camcorders TV & Home Theater Portable Audio
 

Site Map | Tour | Subscribe to Yahoo! Tech

Question and Answer content at Yahoo! Tech is written by Yahoo! users at Yahoo! Answers. Yahoo! does not evaluate or guarantee the accuracy of any Yahoo! Answers content. For more information, read the Full Disclaimer.

Opinions expressed by the Advisors are their own and do not necessarily reflect the views of Yahoo! Inc. Yahoo! receives no compensation from any manufacturer or distributor nor does it compensate any Advisor for the coverage of any product or service in any Advisor's content.