Ask the Expert

Augment WEP with WiFi-tolerant VPN

What is your opinion of the level of security protection offered by these vendors who are marketing wireless devices for the home or campus environment that follow the 802.11b standard? Also, what are your thoughts on the existing WEP capabilities? How easy is it to intercept traffic and interpret the info by someone just getting within 100 meters of a wireless network?

    Requires Free Membership to View

My opinion is that WEP is not (nor was it meant to be) a complete security solution for WiFi. It needs to be augmented by a WiFi-tolerant VPN solution. The best way to secure it today is to first put an IPSEC VPN gateway behind the WAP. Next, you configure the gateway to only accept inbound/outbound IPSEC traffic (use IKE for JFK for key negotiation). Finally you install a VPN client/s on the machine/s that want access to your network. What this guarantees is that a VPN tunnel will have to be established before a user can access your network over the wireless access point and that an IPSEC tunnel will always be present for the duration of the session.

This was first published in December 2001

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: