Wireless Vulnerability Assessments provide an organization validation that currently deployed security controls are protecting the wireless network, providing a point in time assessment of the risks posed by the wireless network. A Wireless Vulnerability Assessment will help an organization identify potential risks due to unauthorized access to the wireless network, unauthorized monitoring of wireless communications and other wireless vulnerabilities. Recommendations for improving the security of the wireless network will be identified in the final deliverables.
The impact of Wireless Security Risks can mean:
- Failure to comply with information security components of regulatory mandates
- Vulnerabilities to intrusion that could lead to loss of data, negative publicity and liability
A Wireless Vulnerability Assessment engagement specifically focuses on layers 1 – 4 of the OSI model. All components of the wireless system are examined including: wireless access points, client configuration, and supporting infrastructure such as authentication servers, and access control devices.
Generally, Wireless Vulnerability Assessment attempt to discovered vulnerabilities and issues in the Wireless LAN environment. These include
- Presence of Rogue Access Points
- Ad-Hoc networks and Probing Stations looking to connect to WLAN
- Policy violations and Intrusions
- Reconnaissance activities
Sample Discovery Chart:
| Topic |
Severity |
Comments |
| Security |
Rogue Access Points |
High |
1 rogue AP needs further investigation |
Leaked Wire Traffic |
High |
Wired side traffic detected to be leaking into Wireless LAN |
Network Scans |
High |
There was some reconnaissance activity occurring in the WLAN |
Probing Stations |
High |
Multiple stations were discovered probing to connect with risky SSIDs |
Ad-Hoc Networks |
High |
Multiple risky ad-hoc networks were discovered |
Security Configurations |
High |
One access point was found to have WEP turned off, a general indicator of a lack of ensured security configurations |
Performance |
Utilization |
Low |
The utilization of all the authorized access points is good. The average ratio of access points to stations is 1 : 2 which is good |
Congestion |
Low |
All the channels operating in the WLAN seem to be in good health with fairly limited amount of CRC errors reported |
Health |
Low |
No Access points are overloaded and none of the stations seem to be hogging the WLAN bandwidth |
The existence of such risks can impact the security of the entire corporate network potentially leading to liability and loss of intellectual property. AirDefense recommends a more in-depth assessment of your Wireless LAN environment to understand the risks posed by these vulnerabilities.
|
ENTERPRISE
RSS