SlideShare a Scribd company logo

Module7 wireless security-b

Download as PPT, PDF
B
BbAOC

This module discusses wireless security issues and provides an overview of Wi-Fi, Bluetooth, and handheld security. It covers Wi-Fi encryption methods, vulnerabilities, and tools used for hacking wireless networks. The key Bluetooth security weaknesses are listed as problems with the E0 unit key, E1 location privacy, denial of service attacks, and lack of integrity checks. Recommendations are given to improve Bluetooth security such as using long random PINs and ensuring security is always turned on.

1 of 19
Downloaded 14 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Module 7 Wireless Security Module 7
Module Objectives This module will familiarize you with the following: Wi-Fi Security Issues Bluetooth Cell Phone Policy and Procedures Module 7
Wireless Today Wi-Fi [Wireless Fidelity] Bluetooth Infrared RFID Satellite / Microwave
Wi-Fi 802.11 b / g / a / n Modes Infrastructure Ad-Hoc (Peer Mode) SSID MAC Filtering
Wireless Networks
Wireless Issues Vulnerabilities Signal Availability Easy access to signals Not much required ($ or equipment) Signal Frequency Congestion Microwave / Cordless Phone / Neighbor SSID Announce False Security of Encryption
Wireless Countermeasures User Awareness Security Settings Confining the signal Disguising the label (SSID) Choosing allowed parties (MAC filter) Hiding the data (Encryption)
Wireless Trends Faster Speed 802.11n / 802.16 (WiMax) Better Security Stronger Encryption Authentication (802.1x)
Wi-Fi Encryption WEP WPA WPA2 EAP
Wi-Fi Risks Key Reuse (WEP is flawed) Sniffing Open Access (sniffed credentials) Denial of Service [DoS] Rogue Access Points Improperly Configured APs
Wi-Fi Tools NetStumbler Kismet AirCrack AirMagnet SnifferPro Ethereal
Handhelds Vulnerabilities Malware Theft (Device or Data) Exploit wireless signal Denial of Service HotSync
Handheld Countermeasures Firewalls / Anti-Malware Password protected No unnecessary data storage Encrypted transmissions 2-factor authentication 101
Bluetooth List of applications A typical Bluetooth mobile phone headset More prevalent applications of Bluetooth include: Wireless control of and communication between a mobile phone and a hands-free headset . This was one of the earliest applications to become popular. Wireless networking between PCs in a confined space and where little bandwidth is required. Wireless communications with PC input and output devices, the most common being the mouse , keyboard and printer . Transfer of files between devices with OBEX . Transfer of contact details, calendar appointments, and reminders between devices with OBEX. Replacement of traditional wired serial communications in test equipment, GPS receivers , medical equipment, bar code scanners, and traffic control devices. For controls where infrared was traditionally used. Sending small advertisements from Bluetooth enabled advertising hoardings to other, discoverable, Bluetooth devices. Two seventh-generation game consoles , Nintendo's Wii [4] and Sony's PlayStation 3 use Bluetooth for their respective wireless controllers. Dial-up internet access on personal computer or PDA using a data-capable mobile phone as a modem.
Most important security weaknesses - Bluetooth Problems with E0 Unit key PIN Problems with E1 Location privacy Denial of service attacks
Other weaknesses No integrity checks No prevention of replay attacks Man in the middle attacks Turn off discovery Sometimes: default = no security …
Recommendations Never use unit keys!!!! Use long and sufficiently random PINs Always make sure security is turned on …
Interesting solutions Replace E0 and E1 with AES Use MACs to protect integrity Pseudonyms Identity based cryptography
Bluetooth Issues Hacking Movie(s)

More Related Content

PDF
IoT Device Security Tips
Centextech
 
PPT
Hacking
Karan Poshattiwar
 
PPTX
Securing network devices
beko-badr
 
DOCX
Ist264 sowards h_chapter5labjournal
Harold Sowards
 
PPTX
Wi fi quiz
andycrute
 
PPT
Open Options Evolutionary Trends
hypknight
 
PDF
IoT security-arrow-roadshow #iotconfua
Andy Shutka
 
PPTX
Communication devices
FazailAhmad2
 
IoT Device Security Tips
Centextech
 
Hacking
Karan Poshattiwar
 
Securing network devices
beko-badr
 
Ist264 sowards h_chapter5labjournal
Harold Sowards
 
Wi fi quiz
andycrute
 
Open Options Evolutionary Trends
hypknight
 
IoT security-arrow-roadshow #iotconfua
Andy Shutka
 
Communication devices
FazailAhmad2
 

What's hot (20)

PPTX
Wireless Networking
jvonschilling
 
PPT
Hacking
powerpointking1
 
PPTX
Ethical hacking
Samip Shah
 
DOCX
Todd D Jason Resume
Todd Jason
 
PDF
Ga13
s1170143
 
PPT
Heartbleed
Hemant Mittal
 
PDF
UETS – Universal Ethernet Telecommunications Services
Agustin Argelich Casals
 
PPTX
PrivateGSM - Voice Encryption Technical Overview
PrivateWave Italia SpA
 
PPTX
2017 conferencia-uets-mobilecongress l∓m
Argelich Networks
 
PPT
Mobile forensics
noorashams
 
PPT
Voice communication security
Fabio Pietrosanti
 
PDF
Omitola mapping-the-security-challenges of IoT
Tope Omitola
 
PPT
Android and ios app development company- thorsignia
charan Teja
 
PPTX
Network security and System Admin
MD SAHABUDDIN
 
PPTX
SmartSecuritySolution_for_IoT
Shiven Chawla
 
PPT
Security in bluetooth, cdma and umts
Ankit Gupta
 
PPTX
Ethical hacking
Sourabh Goyal
 
PDF
Treball seguretat wifi
JorgeAnayaSanz
 
PPTX
Intrusion prevention systems
samis
 
PDF
Datashur Presentation pin flash drive - Kingfin
Kingfin Enterprises Limited
 
Wireless Networking
jvonschilling
 
Hacking
powerpointking1
 
Ethical hacking
Samip Shah
 
Todd D Jason Resume
Todd Jason
 
Ga13
s1170143
 
Heartbleed
Hemant Mittal
 
UETS – Universal Ethernet Telecommunications Services
Agustin Argelich Casals
 
PrivateGSM - Voice Encryption Technical Overview
PrivateWave Italia SpA
 
2017 conferencia-uets-mobilecongress l∓m
Argelich Networks
 
Mobile forensics
noorashams
 
Voice communication security
Fabio Pietrosanti
 
Omitola mapping-the-security-challenges of IoT
Tope Omitola
 
Android and ios app development company- thorsignia
charan Teja
 
Network security and System Admin
MD SAHABUDDIN
 
SmartSecuritySolution_for_IoT
Shiven Chawla
 
Security in bluetooth, cdma and umts
Ankit Gupta
 
Ethical hacking
Sourabh Goyal
 
Treball seguretat wifi
JorgeAnayaSanz
 
Intrusion prevention systems
samis
 
Datashur Presentation pin flash drive - Kingfin
Kingfin Enterprises Limited
 
Ad

Viewers also liked (6)

PPT
Student Laptop Orientation
kassissieh
 
PPT
Module5 desktop-laptop-security-b
BbAOC
 
PPTX
Laptop physical security
Kensington ClickSafe™
 
PPT
Final Project, Power Point Presentation[1]
guesta27a047
 
PPTX
Presentation on project report
ramesh_x
 
PPTX
Final Year Project Presentation
Syed Absar
 
Student Laptop Orientation
kassissieh
 
Module5 desktop-laptop-security-b
BbAOC
 
Laptop physical security
Kensington ClickSafe™
 
Final Project, Power Point Presentation[1]
guesta27a047
 
Presentation on project report
ramesh_x
 
Final Year Project Presentation
Syed Absar
 
Ad

Similar to Module7 wireless security-b (20)

PPT
Mobile Device Security
John Rhoton
 
PDF
Mr. Vivek Ramachandran - Advanced Wi-­Fi Security Penetration Testing
nooralmousa
 
PPT
Wi-Fi vs Bluetooth
Arun ACE
 
PPT
Ch11 Hacking Wireless Networks it-slideshares.blogspot.com
phanleson
 
PPT
Windows Mobile Enterprise Security Best Practices
John Rhoton
 
PPTX
CNG 256 wireless wi-fi and bluetooth
Frank Victory
 
PDF
IMPLEMENTATION OF A SECURITY PROTOCOL FOR BLUETOOTH AND WI-FI
IJNSA Journal
 
PDF
IMPLEMENTATION OF A SECURITY PROTOCOL FOR BLUETOOTH AND WI-FI
IJNSA Journal
 
PPTX
WIRELESS GIGABIT TECHNOLOGY
Hari Krishnan
 
PDF
A Study Of Wireless Network Security
Claire Webber
 
PPTX
Wireless and how safe are you
Marcus Dempsey
 
PPT
Rj bluetooth
Ritesh Kalshetty
 
PPT
254460979-ishant abcd-098765432222-1.ppt
zainabsaiyad566
 
DOCX
The Risks and Security Standards of WLAN Technologies: Bluetooth and Wireles...
Lindsey Landolfi
 
PPTX
LAN Switching and Wireless: Ch7 - Basic Wireless Concepts and Configuration
Abdelkhalik Mosa
 
PPT
Wireless and WLAN Secuirty, Presented by Vijay
thevijayps
 
PPTX
Wifi- technology_moni
MD MONIRUZZAMAN
 
PPTX
R1x g12 wifi i
cairo university
 
PPTX
Topic 4.0 wireless technology
Atika Zaimi
 
PPTX
Wirless Security By Zohaib Zeeshan
Zaibi Gondal
 
Mobile Device Security
John Rhoton
 
Mr. Vivek Ramachandran - Advanced Wi-­Fi Security Penetration Testing
nooralmousa
 
Wi-Fi vs Bluetooth
Arun ACE
 
Ch11 Hacking Wireless Networks it-slideshares.blogspot.com
phanleson
 
Windows Mobile Enterprise Security Best Practices
John Rhoton
 
CNG 256 wireless wi-fi and bluetooth
Frank Victory
 
IMPLEMENTATION OF A SECURITY PROTOCOL FOR BLUETOOTH AND WI-FI
IJNSA Journal
 
IMPLEMENTATION OF A SECURITY PROTOCOL FOR BLUETOOTH AND WI-FI
IJNSA Journal
 
WIRELESS GIGABIT TECHNOLOGY
Hari Krishnan
 
A Study Of Wireless Network Security
Claire Webber
 
Wireless and how safe are you
Marcus Dempsey
 
Rj bluetooth
Ritesh Kalshetty
 
254460979-ishant abcd-098765432222-1.ppt
zainabsaiyad566
 
The Risks and Security Standards of WLAN Technologies: Bluetooth and Wireles...
Lindsey Landolfi
 
LAN Switching and Wireless: Ch7 - Basic Wireless Concepts and Configuration
Abdelkhalik Mosa
 
Wireless and WLAN Secuirty, Presented by Vijay
thevijayps
 
Wifi- technology_moni
MD MONIRUZZAMAN
 
R1x g12 wifi i
cairo university
 
Topic 4.0 wireless technology
Atika Zaimi
 
Wirless Security By Zohaib Zeeshan
Zaibi Gondal
 

Module7 wireless security-b

  • 1. Module 7 Wireless Security Module 7
  • 2. Module Objectives This module will familiarize you with the following: Wi-Fi Security Issues Bluetooth Cell Phone Policy and Procedures Module 7
  • 3. Wireless Today Wi-Fi [Wireless Fidelity] Bluetooth Infrared RFID Satellite / Microwave
  • 4. Wi-Fi 802.11 b / g / a / n Modes Infrastructure Ad-Hoc (Peer Mode) SSID MAC Filtering
  • 6. Wireless Issues Vulnerabilities Signal Availability Easy access to signals Not much required ($ or equipment) Signal Frequency Congestion Microwave / Cordless Phone / Neighbor SSID Announce False Security of Encryption
  • 7. Wireless Countermeasures User Awareness Security Settings Confining the signal Disguising the label (SSID) Choosing allowed parties (MAC filter) Hiding the data (Encryption)
  • 8. Wireless Trends Faster Speed 802.11n / 802.16 (WiMax) Better Security Stronger Encryption Authentication (802.1x)
  • 9. Wi-Fi Encryption WEP WPA WPA2 EAP
  • 10. Wi-Fi Risks Key Reuse (WEP is flawed) Sniffing Open Access (sniffed credentials) Denial of Service [DoS] Rogue Access Points Improperly Configured APs
  • 11. Wi-Fi Tools NetStumbler Kismet AirCrack AirMagnet SnifferPro Ethereal
  • 12. Handhelds Vulnerabilities Malware Theft (Device or Data) Exploit wireless signal Denial of Service HotSync
  • 13. Handheld Countermeasures Firewalls / Anti-Malware Password protected No unnecessary data storage Encrypted transmissions 2-factor authentication 101
  • 14. Bluetooth List of applications A typical Bluetooth mobile phone headset More prevalent applications of Bluetooth include: Wireless control of and communication between a mobile phone and a hands-free headset . This was one of the earliest applications to become popular. Wireless networking between PCs in a confined space and where little bandwidth is required. Wireless communications with PC input and output devices, the most common being the mouse , keyboard and printer . Transfer of files between devices with OBEX . Transfer of contact details, calendar appointments, and reminders between devices with OBEX. Replacement of traditional wired serial communications in test equipment, GPS receivers , medical equipment, bar code scanners, and traffic control devices. For controls where infrared was traditionally used. Sending small advertisements from Bluetooth enabled advertising hoardings to other, discoverable, Bluetooth devices. Two seventh-generation game consoles , Nintendo's Wii [4] and Sony's PlayStation 3 use Bluetooth for their respective wireless controllers. Dial-up internet access on personal computer or PDA using a data-capable mobile phone as a modem.
  • 15. Most important security weaknesses - Bluetooth Problems with E0 Unit key PIN Problems with E1 Location privacy Denial of service attacks
  • 16. Other weaknesses No integrity checks No prevention of replay attacks Man in the middle attacks Turn off discovery Sometimes: default = no security …
  • 17. Recommendations Never use unit keys!!!! Use long and sufficiently random PINs Always make sure security is turned on …
  • 18. Interesting solutions Replace E0 and E1 with AES Use MACs to protect integrity Pseudonyms Identity based cryptography