Privacy Alerts - Wireless Network Security
Home
Internet & Software Privacy
Computer Hardware Privacy
Telephone Privacy
Data Broker Opt-Out
Card-Based Concerns
Background Checks & Criminal Records
Financial Privacy
Identity Theft
Latest Privacy News
Display Our Seal
 

Wireless network security: home networks

Concerned about security for something that is not physically visible? I am too.
Wireless. It's the future. In the next few generations, physical wires will become rarer and rarer sights.

Let's start off with some important definitions:

Encryption: The scrambling of transferred or stored information into a secret code that can be read only by the appropriate decoding software.

Extended Service Set Identifier (ESSID): This is the original name that a manufacturer assigns to a router. Upon installation, users can improve their wireless network security by changing it to a unique name. An ESSID is very similar to a Service Set Identifier (SSID).

Firewall: Can be either hardware or software. It basically over sees which information can come in and out of your computer or your home network. Firewalls are designed to keep hackers from having unfettered access to your computer by watching for outside attempts to access your system and block communications to and from sources you don't permit. Most home users use a software firewall, while some high risk servers and computers might need a hardware firewall.

Media Access Control (MAC) Address: This is a unique number that a manufacturer assigns to each computer, printer, scanner, or other device in a network.

Router: A device that connects networks. Wireless routers are commonplace now-a-days.
Wired Equivalent Privacy (WEP): A security protocol that encrypts data sent to and from wireless devices within a network. This type of encryption is not as strong as WPA encryption.

Wi-Fi Protected Access (WPA): Also encrypts data sent to and from devices in a wireless network. This protocol was specifically developed to fix many of the inherent weaknesses/flaws in WEP.

Are wireless networks secure? They're only as secure as you make them.

A lot of times when you get a new router, you just want to get it set up so you can use the internet as soon as possible. Well, there are many important privacy considerations that should pass through your mind before you just set up it and leave it. Numerous security problems can result due to bypassing necessary precautions.

I know researching and configuring wireless features is time consuming and can be a real pain in the neck. So that's why I summarized the most important parts for you. The recommendations below go over the steps I would suggest to improve the security of your home wireless network.

1. Change All Default Passwords and Usernames.

The center-piece to any home wireless network is a router (also known as an access point). For router setup, manufacturing companies allow owners to enter their network address and account information into web pages. The standard security on these web pages is typically just a login screen (username and password). For a specific router or piece of equipment, the manufacturing company will by default, typically only assign few or even only one login and password. These small numbers of default identifiers are typically known to hackers.

So change them when you setup the router.

2. Set Up and Use Encryption on the Router.

Encryption scrambles the signals between equipment on the network. WPA encryption is more secure than WEP encryption, so use WPA if you can. All wireless devices support one of these two types of encryption.

3. Change the Default SSID

An example of a default SSID for a Belkin router would be "belkin_pren_846." While in and of itself, knowing the name of your SSID doesn't allow a hacker to break into your network, an unchanged default SSID 1) is often an indicator of low security or neglected network, and 2) potentially gives the name of the wireless equipment you are using to a hacker (that is, point them towards which default passwords to try).

4. Enable MAC Address Filtering

Every part (access point, router, etc...) of your wireless network possesses a unique identifier that is assigned by its manufacturers. A MAC address is also commonly called the "physical address." Routers allow their owners to add the MAC address of each device on the network into a network key.

Basically, if a device attempts to access the network and its MAC address is not on the key, it will not be successful (that's to say, that it will make it more difficult for a hacker to fake a MAC address).

5. Disable SSID Broadcast

This is the feature that broadcasts your network signal so other computers or access points can find it. SSID broadcasting is important for easier detection of a network; for example, this feature is commonly useful when trying to find a wireless hotspot at a café.

The SSID broadcast is like a flag identifying the network. It is also the basis for a hobby called "wardriving" where wireless enthusiasts (let's be real here, they're nerds) drive around with a Wi-Fi enabled device (e.g. laptop, PDA) and map out wireless networks. The largest website for the hobby is http://www.wigle.net/. It's surprising that all these networks are mapped out.

Many routers allow for their SSID broadcast to be turned off.

If you are concerned about privacy, you should turn off your broadcast because it is like telling a hacker, "Hey, I'm right here!".

7. Assign Static IP Addresses to Devices

Most home networks use dynamic (changing) IP addresses. This also means that a hacker has a larger selection of valid IP addresses to choose from should they be interested in breaking into your network.

The idea is similar to MAC assignment, where a specific amount of identities are allowed. In this case the valid IDs are IP addresses that are be assigned to your devices. Devices not on the accepted IP list will not be accepted on the network.

8. Use Firewalls

A firewall is a feature of your router and also part of the software on nearly all new computers. A functioning firewall greatly increases you network and computer security. A word of warning though, no firewall in and of itself can detect or stop all attacks, so it's not sufficient to install a firewall and then ignore all other security measures. You still have to be careful. It doesn't make any sense to spend money on these devices then turn them off.

9. Position the Router or Access Point Safely

Put your router in the center of your home so the network signal extends a minimal amount from your actual home. This will make it harder for people on the street, neighbors, and others to access your network.

10. If you're not using it, turn it off.

Makes sense right? If you're leaving your home for the day, or going on a vacation, your wireless network is still available and is unsupervised. One way you can ensure nobody hacks in, would be to simply turn it off while you're gone.

11. It's really important to use Anti-Virus and Anti-Spyware.

I know this isn't directly apparent to wireless security, but it is possible for a computer virus, malicious spyware, or some other malware to infect your computer (via the internet, some removable device, etc...), then compromise your computer's firewall, breaching your security.

Related articles

Rate this article

Your vote:

Leave a comment

Your Name (required)

Questions about this topic? Ask them on our Contact Us page.

Bookmark this page
Home | Contact Us | Privacy Policy | Terms | About Us | Sitemap | Attention Webmasters
© PrivacyAlerts.org - All Right Reserved.