Wi-Fi security issues – a 5 step guide on the Common Threats and how to manage them

Today’s Wi-Fi networks are now more secure than the typical wired network in the same building. While that may seem like a bold opening statement, today this is often the case.

It is true that WLANs got off to a chequered start 20 years ago, with attackers finding ways around the early security procedures and protocols in place. Consequently, though, the industry devoted a great deal of effort and innovation towards making WLANs much more secure – and they succeeded. There are, however, still challenges in securing any network.

As we know, wireless “leaks out” to the surrounding environment, which means passers-by can see and attempt to connect to any network they choose. As a response, we need to put steps in place to mitigate this threat. For wired networks, physical barriers with locks on the doors and containment physically within the building are the traditional wired networking means of defense. However, if a person with malicious intent is able to gain physical access, perhaps through social engineering, or tail-gating, a device can be connected and access gained which, then, is an opportunity for an attack to commence.

So how have WLANs been addressing security concerns? What has the result of all that investment and innovation been?

Wi-Fi Security Methods

The Gold standard is the use of Digital Certificates. This method is preferable because, unlike user-created passwords, certificates are virtually impossible to replicate. However, this method is also the most complex to deploy for the network administrator. Unless a friendly, user self-service Enrolment System is used to automate the authorization, creation, and distribution of certificates and secure WLAN setup for users can become a time-consuming task.

The Silver standard is a username and password-based authentication – often linked to a user database such as Microsoft Active Directory. This works well, but network administrators need to implement with care, making sure that proper server certificates are deployed to ensure users address a legitimate server, and that user passwords are suitably complex. Interestingly, both password complexity and frequency of change need not be as onerous as imagined and are well explained here.

We must accept that there will be a need to support some devices that cannot support the gold or silver methods. Such equipment often compromises devices that have crossed over from the home market to the workplace as digital transformation has taken hold – smart speakers, video streamers and casters, as well as other IoT devices. Limited to Pre-Shared Key authentication, in the commercial world, the use of a unique static key per device, called Dynamic Pre-Shared Key, provides enhanced security and limitation of a breach if one key is discovered.

2019 will see the introduction of a further security enhancement called WPA3. This new Wi-Fi security standard will replace WPA2, and improve the encryption strength and ease of setup of the methods discussed above.

Role Based Access – with a suitable WLAN infrastructure, the above access methods can map to user roles. Define what is allowed for a user type and apply rules accordingly. Roles provide a plethora of controls, from VLAN allocation, through to simple port and protocol-based firewall rules up to application-based recognition and control, including URL filtering.

via Ruckus

How to Prepare Wi-Fi Networks for Smart Devices

Before you plug in and fire up those smart light bulbs, appliances or television you need to prepare your Wi-Fi network to ensure your speeds and security are not affected by the presence of this new equipment.

It is estimated by research firm IHS that the IoT market will grow from an installed base of 15.4 billion devices in 2015 to 30.7 billion devices in 2020 and 75.4 billion in 2025. Our washing machines, coffee pots, thermostats, lights, probably even the toilet and the kitchen sink will all be hooked up to our home Wi-Fi networks. While this will likely lead to more convenience when it comes to home management and maintenance it will also create bottlenecks on home networks slowing down your smart phone, tablet and laptops.

Before you plug in and fire up those smart light bulbs, appliances or television you need to prepare your Wi-Fi network to ensure your speeds and security are not affected by the presence of this new equipment. Most people plug in their Wi-Fi router and never worry about it again, unless they are calling their internet provider to complain about an outage or slow connection. It might not be your provider though, your type of router, where it is placed, the bandwidth of the router and the number of devices you have connecting to it at home could be to blame for your Wi-Fi headaches.

1. Location, location, location. Router location plays a major role in the range and efficiency of a Wi-Fi network. Placing a router in a cabinet or an out of the way room might make your home look less cluttered but this also blocks the signal with doors and walls, plus everything inside your walls, from reaching the areas of your home where you are trying to use your devices. Use a Wi-Fi analytics app to check your Wi-Fi signal strength at each of the locations that you plan to put smart home devices. Be sure that the signal strength is at least 60% at each of those locations. Also check the signal strength where you normally sit to use your laptop, tablet and phone.

2. Flex Wi-Fi muscle. If you have a smaller home and need more coverage look for a high-power router that has more internal and external antennas than your current router model. If you have a larger home, consider using range extenders or a whole home Wi-Fi system.

3. Read the label. When shopping for a new router some of the key terms to look for include AC1900 as a minimum speed and MU-MIMO Technology. While your connection speeds will ultimately be determined by the level of speed you pay for through your internet service provider if you do not have a router equipped to handle the fastest speeds available today you will always experience a slower connection. MU-MIMO is desirable in homes with multiple devices and internet users. Instead of creating a queue of connection requests that are handled in order like a traditional router would do, MU-MIMO routers serve data to more devices at once without limiting speeds. This is critical in homes with smart devices as the total count of devices can add up quickly.

4. Make it ironclad. We all know that hackers have a variety of ways to trick us into giving them access to our digital accounts and methods of stealing account information and passwords from companies we do business with; however, that doesn’t mean we should just give up and let them into our networks freely. You need to make sure your network is secure as possible. If you are deciding between two routers and one offers added layers of security with virus protection and malware detection, for example, pick the one that is focused on security. Also, be sure to set up complex, hard to crack passwords. Never leave your Wi-Fi open without a password. Even guest networks should require one for access. Also, any time you have an issue with your email being hacked or one of your online accounts is breached, change your Wi-Fi password along with all your other accounts, just to be safe.

To recap;

1. Position your router in an optimal location, as central as possible.
2. Test your Wi-Fi signal strength with a signal strength tool, be sure to check all locations where smart devices will live.
3. If weak spots are found, try a High-Power Router or a Range Extender. If you want a seamless network, try a Whole Home Wi-Fi System.
4. Use a router that supports at least AC1900 speeds and MU-MIMO technology.
5. Keep your network secure with hard-to-crack passwords and built-in protection from other web threats like Malware.

via HomeToys

QUALCOMM ANNOUNCES WI-FI CHIPS FOR THE IoT

Chipmaker Qualcomm is looking to capitalize on the growing number of connected devices within the home by releasing a new Wi-Fi technology package aimed at addressing home network congestion issues, according to the San Diego Union Tribune. With the growth of the IoT, companies are looking to provide consistent service on home networks that were not designed to handle such high numbers of connected devices. The new chip standard, 802.11ax, is designed to help cope with that issue. The number of IoT devices is growing steadily. BI Intelligence forecasts that there will be more than 22 billion by 2021. While the majority of these devices will be used in enterprise solutions, the number of consumer IoT devices will continue to rise as well, reaching into the billions. Combined with the growing number of mobile devices, home networks will see more devices trying to connect and transmit or receive data. Additionally, BI Intelligence found that 80% of IoT service providers use Wi-Fi in their solutions, with only a limited number using more specialized IoT network protocols like ZigBee or Z-Wave. In the home, we expect that number to likely be even higher, as the infrastructure for Wi-Fi connections already exists and consumers can simply connect devices to their existing networks. Companies designing IoT devices need to be mindful of the ease of network integration. In both consumer and enterprise situations, those making the decision to install connected devices will want to minimize the hassle associated with that installation. Using Wi-Fi may be one way to reduce the difficulties of moving to new devices, sacrificing some potential efficiency for the sake of convenience. To facilitate this sort of decision, Qualcomm and other chip makers are working to make Wi-Fi more suited for the IoT through steps like the introduction of the 802.11ax standard, creating the kind of network that can support the number of devices that will be coming over the next few years.

Eero’s New Wi-Fi Routers Are Step One In Its Plan To Become A Smart-Home Giant

To stand out from bigger mesh-networking rivals, Eero is unveiling new hardware, a subscription service, and a bet on a new internet-of-things technology.

Eero now has more to sell you than just a better wireless router.

The San Francisco-based startup is launching a $10 per month subscription service plan for its mesh routers, which use multiple connection points to blanket a home in Wi-Fi coverage. The plan, called Eero Plus, will include security and content filtering to start, and will gain other features over time.

Eero is also releasing new routers with better coverage than the previous ones, starting at $299 for an entry-level system. Those new routers even include a tentative step into the smart-home business, with support for a nascent protocol known as Thread.

The overarching goal is one that Eero–which helped jump-start the mesh-network trend that the giants of networking have since embraced–has never shied from talking about. Instead of merely competing on price or networking features in the booming mesh router market, Eero sees Wi-Fi gear as the building blocks of a smarter home. Now the company’s starting to assemble the pieces.

“You look at where the home is going, every home is going to need great connectivity, and ultimately every home’s going to need to have an operating system, something to power all the different experiences,” says Nick Weaver, Eero’s cofounder and CEO. “And our view is, those two things should be the same.”

EERO 2.0

Eero’s new $299 router system consists of two units. The main router, which hooks up to your broadband modem, has the same design as the original Eero, but promises double the bandwidth and range. There are also secondary “Beacon” modules that plug directly into power outlets, and promise 20% to 30% better bandwidth and range than the original Eero. Those Beacons double as nightlights, which flip on automatically when a room turns dark. The hope is that users will be induced to install them out in the open where coverage is best.

Weaver says Eero’s new two-pack should provide coverage that’s equal to or better than its old three-pack, despite being $100 cheaper. For larger homes, Eero will also sell a $399 package with one main router and two Beacons, and a $499 “Pro” package with three of the larger routers. Individual units will cost $149 per Beacon, and $199 per full-size router. (To justify the lack of Ethernet output on the Beacons, Weaver notes that less than a third of customers use their routers for wired connectivity today.)

The new hardware alone should help Eero keep pace with rival mesh systems such as Google Wi-Fi ($299 for a three-pack), Netgear Orbi ($299 for one router and plug-in module), and Linksys Velop ($380 for a two-pack). None of those companies, however, are attempting to sell premium subscriptions alongside their hardware. That’s where Eero hopes to stand out.

“Our view is, over the last year and a half, we’ve pushed out these software updates that have done things like improve network performance, but we’ve also used that to lay the groundwork to build a whole-home operating system where you can put applications on it,” Weaver says.

The Eero Plus service costs $10 per month or $100 per year, and acts like a bouncer for malware, botnets, and phishing attempts at the network level. This applies not just to PCs and phones, but to smart TVs, security cameras, smart door locks, and anything else that’s connected to the network. The idea is that users will stay protected even if device makers fail to patch their own security holes.

Eero is also throwing in a content filter aimed at families with children that can block illegal, violent, or sexually explicit websites, and can force the use of Google SafeSearch, though Weaver notes that this only works with web browsers. Since Eero isn’t picking through individual data packets, it can’t stop your kid from watching, say, R-rated Netflix movies, or receiving graphic text messages. In that sense, Eero’s filter is similar to some free tools that already exist, such as OpenDNS Family Shield, but with easier setup.

In any case, Weaver says those two services are just the beginning for Eero Plus, and he suggested that the company will add more features on a regular basis.

“Think of it [as] the same as Amazon Prime,” he says. “It’s a service that we’ll keep improving and adding to, and expanding the product offering.”

THREADED TOGETHER

While the subscription service might help Eero expand its business in the short term, its new routers also include one rather long-term bet on an emerging smart-home protocol called Thread. Much like Wi-Fi, Bluetooth, ZigBee, and Z-Wave, it’s another way for devices to communicate wirelessly throughout the home. But unlike those well-established protocols, Thread has practically no adoption among device makers right now.

So why is Eero going all-in? Weaver argues that Thread is the best option due to its low power consumption, encryption by default, and ability to scale up to work with dozens of smart home devices.

“It’s really the future of low-power connectivity in the home,” he says. (There’s also a personal connection, in that Chris Boross, Eero’s product manager, previously served as Thread’s president.)

Eero will be first to market with a Thread-certified “border router,” meaning that it can connect Thread devices to Wi-Fi networks and the internet, says Grant Erickson, Thread’s current president. With an anchor product in place, Erickson is optimistic that other device makers will follow, and expects between 20 and 50 Thread-enabled devices by the end of the year. He notes that some devices, such as Nest products, have dormant Thread radios already that they could turn on in future updates. And because Thread uses the same radio technology as the popular ZigBee protocol, existing smart home products with enough storage and memory could add support with just a software update.

“I think what you’re going to see between now and the end of the year is what we like to call a trickle, turning into a creek, turning into a river,” Erickson says.

The early support for Thread may even hint at where Eero is going next. Tom Kerber, an analyst for Parks Associates, notes that one of the main features of Thread is that it’s decentralized. Instead of sending all communications through a single hub, Thread enables a scenario where any device can make decisions and perform computing on behalf of other devices on the network.

“When you talk to the silicon vendors, their long-term view of the connected home, and how it operates, and how devices communicate with each other, Thread is trying to be in alignment with that,” Kerber says.

That kind of thinking also lines up with what Weaver has said in previous interviews. In his view, Eero could become a distributed computing platform, whose router pods provide extra processing power to other devices around the home. In theory, this could allow for smart home devices that are cheaper, faster, and less dependent on the internet for core functions.

While Thread support alone doesn’t make that happen, it could lay the groundwork for a software platform that does. Like everything Eero’s done so far, it’s another building block.

via fastcompany

8 Amazing Facts About WiFi that You Probably Did Not Know

The internet of things (IoT) has become almost a part of our necessity lately. The fundamental enabler of IoT is WiFi.

WiFi has made lives easier and better. It has also played a huge role in bringing us together no matter what your geographical locations are.

In this article, I have discussed a few extraordinary and mind-blowing facts about WiFi that you have probably not heard of in the past. Take a peek.

1.       The term WiFi was invented by Interbrand

You probably know that the term WiFi stands for Wireless Fidelity. Well, that is actually wrong. But don’t worry. You aren’t the only person to think in that way. Most people believe that the term WiFi stands for wireless fidelity.

 The wrong notion cropped up from a nonsense advertising slogan that stood for “The standard for ‘Wireless Fidelity’.”

The term WiFi was actually invented as a play on words of the term, Hi-Fi (High Fidelity).

2.       The WiFi revolution is in full flow

WiFi has actually changed the world. Vinton G. Cerf, the father of the internet predicted in 1992 that IP would appear on everything. Well, it finally happened.

A large number of WiFI enabled thermostats, light bulbs, monitoring and control systems, wearable devices, security gadgets etc. are available in the market these days. IPs even appear on daily objects ranging from walking sticks to T-shirts.

So you see, the revolution has already happened.

3.       WiFi has the ability to travel more than what you think

You might develop this notion at times when you fail to get a stable internet connection I your room. If you think like that, you aren’t exactly right in all aspect.

Many WiFi networks that are typically made for home use normally have a range of around 30m. So your point might be justified to this instant. But there are certain special networks that can travel more than 275kms in distance.

Such additional coverage is achieved by network technicians though special WiFi range extenders.

4.       Make all connections appear seamless through a single technology

Imagine purchasing a WiFi supported TV, a sprinkler system, a thermostat or even a washing machine and getting them on the same network used by your smartphone, tablet and computer. You can do that with WiFi.

One network to rule them all.

5.       With the increase in number of connected devices, security has increased by several levels

Our lives are getting more and more automated with the passage of time. Thus, it has become absolutely essential to practice safe connecting habits.

WiFi comes with industry standard security that customers can rely on with their eyes closed.

A WiFi network having WPA2 provides both privacy for communication and security at the same time. For maximum safety, it’s advisable for your network to include only those devices built with the latest security technology called WPA2 (WiFi Protected Access 2).

Almost all WiFi Certified devices implement WPA2.

6.       United States has stronger WiFi signals than Europe

That’s because the regulatory authorities in the United States allow transmission in higher power than that of Europe resulting in stronger signals.

7.       Wireless performance will drop if many wireless devices get on the connection

Wireless performances are sure to drop if a substantial number of devices get on it.

Many routers theoretically announce that they can support more than 255 devices at a stretch but in reality, if 255 devices get on it at the same time, the internet connection will barely stay usable at that point.

The major culprit is bandwidth which varies greatly depending on the type of your router.

Another point that you should remember is that if there are a number of WiFI networks around you, your connection is bound to slow down as multiple signals result in interference disrupting the clarity of your signal.

8.       Microwaves affect WiFi networks

Microwave ovens emit a huge amount of energy when they are in use. This can interfere with your WiFi signal.

Microwave ovens emit about 1000W of energy which is almost 10,000 times more than your WiFi signal. If it comes in contact with your network, it’s definitely going to result in a significant disruption of your WiFi connectivity.

via techsling

Can I use a remote desktop service?

Can I use a remote desktop service?

Can I connect my Wireless Printer on the network?

Can I connect my Wireless Printer on the network?

How do I connect a WiFi enabled device that does not have a web browser?

How do I connect a WiFi enabled device that does not have a web browser?

Is this connection secure?

Is this connection secure?

How many devices can use the network at once?

How many devices can use the network at once?

What devices can connect?

What devices can connect?