Secure
& Manage Your
Wireless LAN:
A Layered Approach
|
 |
Seminar
Outline
 |
Section 1: WLAN Security Challenges - Understanding
Major Security Vulnerabilities
DEMOS:
What NetStumbler can detect & what it can’t,
How Kismet detects more APs than NetStumbler,
See how Windows XP spills the beans, Is your organization
a hot spot (wigle.net)?
|
|
Section 2: Root out Rogue Wireless LANs
Defining & Detecting Rogue WLAN devices
- Hardware APs, Soft APs, Wi-Fi ready unassociated
laptops, barcode scanners, PDAs
Approaches to detect Rogue Wireless LANs
- Wired-Side polling
- Scanners & Sniffers
- 24x7 Monitoring of Airwaves
Rogue Wireless LAN Detection Functionality requirements
- What was detected – All Rogue Devices
- Who connected to whom – Accidental / Malicious
Associations, Ad
hoc networks
- When did they connect & for how long?
- How much data was exchanged – wired-to-wireless,
wireless-to-wired
- Where are they?
DEMOS: AP
MAC Address Spoofing, Convert your laptop into
a Soft AP, Configure a laptop in ad hoc mode,
Malicious association with Hacker
|
|
Section 3: Secure & Support Sanctioned
Wireless LANs
Layered Approach to Security
- Perimeter Control
- Access Control (Authentication)
- Data Protection (Encryption)
- 24x7 Monitoring
Understanding 802.1x, WEP, WPA, LEAP, PEAP, Wireless
VPNs, TKIP, TTLS
Defining & Enforcing WLAN Security Policy
Top 10 Policy Violations
DEMOS: Station
MAC Address Spoofing, WEP Demo, Denial of Service
attacks, Session Hijacking, Man-in-the Middle
attacks, Manipulating probe requests
|
|
Question & Answer Session |
< Back
|
|
Printable
Version