WiFi Security?

Most community access point services are being provided accidentally by companies and individuals who buy wireless access points (especially wireless routers that come configured with DHCP) to support mobile laptops with a wireless PC card. They frequently install the access point as is out of the box, leaving wide-open access and a security hole for anyone passing by.

A recent survey of 300 access points near Harvard Square in Cambridge, MA showed more than half were open and serving DHCP.

Although there are few stories of computer crackers invading privacy, the potential for damage is very real.

• SFGate story.
• Security Focus story)
• Ars Technica Wireless Security Blackpaper

The Wireless Equivalent Privacy Protocol (WEP) offers some protection. (Vulnerability explained.)

NetStumbler.com maintains a database of Access Points with an eye toward securing them all. Your Access Point may be on the web already.

The Wireless Ethernet Compatibility Alliance (WECA) recommends the use of end-to-end security mechanisms such as a virtual private network (VPN) and suggest that, for now, WLAN users install 802.11b (WiFi) outside the firewall, use a VPN and IPsec in, change the default key, then continue to change it frequently.

skyCAPS are Community Access Point Services based on a mix of technology, hardware, and software for management, monitoring, and billing recommended by skyCAPS.net, a subsidiary of skyBuilders.com.