It is surprisingly easy to design a system that is logically completely secure by using VPNs and firewalls, but that , in practice,leaks like a sieve. This situation can occur if some of the machines are wireless and use radio communication, which passes right over the firewall in both directions. The range of 802.11 networks is often a few hundred matters, so anyone who wants to spy on a company can simply drive into the employee parking lot in the morninng. leave an 802.11 enabled notebook computer in the car to record everything it hears, and take off for the day. By late afternoon, the hard disk will be full or valuable goodies. Theoretically, this leakage is nor supposed to happen. Theoretically, people are not supposed to rob banks, either.
Much of the security problem can be traced to the manufactures if wireless base stations ( access points) trying to make their products user friendly. Usually if the user takes the device out of the box and plugs it into the electrical power socket, it begins operating immediately -nearly always with no security at all, blurting secrets to everyone within radio range. If it is then plugged in to an Ethernet, all the Ethernet traffic suddenly appears in the parking lot as well. Wireless is a snooper's dream come true; free data without having to do any work. It therefore without saying that security is even more important for wireless systems than for wired ones.
Much of the security problem can be traced to the manufactures if wireless base stations ( access points) trying to make their products user friendly. Usually if the user takes the device out of the box and plugs it into the electrical power socket, it begins operating immediately -nearly always with no security at all, blurting secrets to everyone within radio range. If it is then plugged in to an Ethernet, all the Ethernet traffic suddenly appears in the parking lot as well. Wireless is a snooper's dream come true; free data without having to do any work. It therefore without saying that security is even more important for wireless systems than for wired ones.
No comments:
Post a Comment