Site Menu
- Safe Computing
- Basics & Essentials
- Beyond the Basics
- Advanced Topics
- Best Practices
- Links
- Contact Us
- Site Map
What's New?
The SafeComputing site has been redesigned! Check out the new topics and organization.
Download Brochures & Handouts
Instructions for encryption, guides, handouts, posters, and brochures are all available for download.
Hot Topics
- Phishing
- Encrypting Stored Data
- University Security Standards (UCSS)
- Locate SSN or Credit Card Numbers
Incident Response
Wireless Security
Wireless computing gives you the freedom to roam. You can take your laptop computer or PDA (Personal Digital Assistant) to a library, classroom, cafe, or other wireless access point and connect to the Internet. You can also purchase a wireless base station, called a router, for your home so you can get online anywhere in the house or in the immediate vicinity outdoors.
The topics covered:
How Wireless Works
With a “wired” network, you have a cable that goes from your computer to a point on the network. When you go to a website, the network traffic is sent along the cable. The switch or hub on the other end of the cable takes your traffic, and passes it along to its destination.
With a wireless network (often called Wifi), there are no wires and, similar to radio waves, your network traffic is broadcast to the area around you. On a wireless network, an access point receives your wireless traffic and sends it along to its destination.
To have a wireless network, you need both a wireless card for your computer and a wireless access point to take the signal from the air and send it to its destination. The wireless card you buy should support multiple types of wireless networks, and most cards that you purchase today will. Any computer with wireless capability that is in range of the signal can gain access to the Internet. Unless you take certain steps, someone can access the information on your computer as well.
Types of Wireless
If a wireless network doesn't use a security method, it is called an open network. Open networks are completely unsecure. You should be very careful when you use them or avoid using them altogether. Anyone can join the network, which means that anyone can listen in on the network traffic.
Wired Equivalent Privacy (WEP) is one of the oldest security methods for routers. Although it may protect against accidental intrusions, WEP is known to be easily breakable and not sufficient protection against most hackers. With today's security standards, there is very little difference between an open network and a wireless network that uses WEP. If you use WEP encryption on your router, be sure to set it to the highest security level.
Wi-Fi Protected Access (WPA) is a more modern security method and was developed to fix the flaws in WEP. WPA is considered the better wireless encryption method and should protect you against most intrusions. If you are purchasing a router, make sure that you get a WPA enabled one. You should also configure your wireless networks to use WPA.
Precautions
Even though wireless service is convenient, keep in mind that whenever and wherever you use wireless you are broadcasting signals that can be intercepted and read by other people. An open network, like those in most public Wi-Fi spots, are not secure and broadcast your information to anyone within range of the signal. If you use an open network to send e-mail, attachments, files, and information that you consider private, you are sharing it with everyone on that connection, whether you want to or not. As a wireless user, you can take the following precautions to better protect the privacy and security of your communications.
- Use secure wireless connections. There are three types of wireless networks (see above). The most secure wireless connection - WPA - uses encryption to protect the information broadcast over the wireless signal. If you are using an open network, limit your activities over the Internet to those that don't contain sensitive or personal information. For example, avoid online shopping, accessing bank or credit accounts, or other interactions that involve sending your account and password in the open.
- Turn off identifier broadcasting. Your wireless router has identifier broadcasting, which means it tells any device within range of its presence. Since you already know you have a router, you do not need to announce this to others. In particular, hackers can use identifier broadcasting to locate vulnerabilities.
- Change the default identifier on your router. A wireless access point must be named, and this name is called the SSID or ESSID. When you see a list of wireless networks on your computer, the names you see are the SSIDs for the access points in range of your computer. If you have a wireless access point at your home, everyone in the area will be able to see your access point if you allow it to broadcast the SSID. It is easier for hackers to find you when you leave the defualt identifier on. Change the identifier to a unique name - something only you, your wireless router, and your computer know.
- Change the router's pre-set password. The wireless manufacturer sets an administrator password. Change your password to something unique. The longer your password, the better. See the password page for tips on setting strong passwords.
OSU Wireless
Ohio State's main campus is a large wireless (or Wi-FI) zone that covers nearly all of the main campus buildings and the immediate areas outside of them. Because Ohio State wants to ensure that its wireless service is used only by students, faculty and staff, the university requires authentication; you need to provide your OSU Wireless Username and password to get online. Without restricted access, anyone in range of OSU Wireless can take advantage of it without the university's knowledge.
