Wireless LAN Security Blog - AirTight Networks

WPA2 Hole196 Webinar Q&A

Kaustubh Phanse — Sat, 21 Aug 2010 04:22:38 +0000

Due to the overwhelming attendance and response we got to the recent WPA2 Hole196 webinar, we did not have time to answer all the questions asked during the webinar. In this post, we are keeping our promise and answering those webinar questions. By the way, the webinar slides and recording from this webinar as well as answers [...]

WPA2 finds itself in a “hole”! Vulnerable to insider attacks!

Kaustubh Phanse — Fri, 23 Jul 2010 06:11:50 +0000

Wi-Fi security has experienced a lot of churn over the last decade. As protocols like WEP and TKIP fell by the wayside, WPA2 emerged as the “Last Wi-Fi Security Protocol Standing.” Wi-Fi Alliance recently announced its plan to phase out WEP and TKIP, promoting WPA2 as the go-to security standard. With solid protection in the form [...]

One fine day in New Delhi

K N Gopinath — Wed, 07 Jul 2010 07:47:30 +0000

I am just back from a trip to New Delhi (along with my colleague, Prabhash Dhyani). The weather was quite hot and humid. Amidst flight delays and apparently unstoppable Delhi traffic, we managed to meet up with some interesting folks and exchanged several ideas. You may be wondering what this has got to do with [...]

Goodbye, WEP & TKIP

K N Gopinath — Fri, 18 Jun 2010 13:05:26 +0000

Wi-Fi Alliance has (finally) decided to take some giant steps in improving the state of wireless security. Starting Jan 2011, TKIP will be disallowed on new APs and from 2012, it will be disallowed on all Wi-Fi devices. Come Jan 2013, WEP will not be allowed on new APs and from 2014, WEP will be [...]

Google or Apple, WiFi spares no one!

Hemant Chaskar — Thu, 10 Jun 2010 07:13:22 +0000

Last week we saw Google facing legal tangles for “accidental interception” of WiFi signals and this week it was Apple facing “mysterious disappearance” of WiFi signals during iPhone-4 demo at WWDC keynote. So “what’s going on”, does WiFi not like us any more? Well, because these things struck Eric and Steve, we got to hear [...]

Has your data been “Woogled”?!

Kaustubh Phanse — Thu, 03 Jun 2010 13:48:12 +0000

The WiFi snooping row Google has gotten itself into seems to be far from over. In April, Google revealed that its Street View cars had been collecting basic data such as the MAC addresses and SSIDs of WiFi networks in the vicinity. But after German authorities asked Google to audit the data, it admitted to have been “mistakenly” snooping [...]

Wi-Fi Packet Capture Made Easy

K N Gopinath — Sat, 08 May 2010 10:59:42 +0000

Recently, there have been multiple instances of Wi-Fi issues related to iPads. Apple has also acknowledged some of the issues - e.g.,an iPad may not automatically rejoin a known Wi-Fi network on a dual band router . Also, Princeton university has faced serious network problems due to iPad. This has been attributed to a problem in the DHCP client on [...]

Wireless Forensics: A Review from RSA Conference 2010

Kaustubh Phanse — Fri, 30 Apr 2010 12:39:28 +0000

With more enterprises deploying wireless LANs and employee-owned WiFi devices flooding enterprises, wireless LAN forensics is becoming a key component of any network forensic audit — whether to prove compliance with a regulation such as PCI DSS or in response to a security incidence. But wireless presents unique challenges to forensic audits. Last month, at RSA [...]

Interference combat guide for WiFi networks: Part 1

Hemant Chaskar — Mon, 19 Apr 2010 06:02:18 +0000

We often hear that WiFi network performance degrades due to radio interference. We also hear that interference is a complex beast which cannot be easily tamed. There are two types of interference sources which affect WiFi network performance – non-WiFi sources and WiFi sources. This post provides a guide to some practical steps to combat often cited non-WiFi interference sources such as [...]

AirTight satisfies PCI wireless scanning requirement in under 5 minutes

Mike Baglietto — Thu, 01 Apr 2010 18:36:23 +0000

Wireless PCI Compliance in just 5 Minutes This new product video from AirTight Networks shows how easy it is to automate your wireless PCI vulnerability scanning. AirTight SpectraGuard Online can be configured and running in as little as 5 minutes and 3 easy steps. AirTight eliminates the need to send staff to remote locations with a [...]