* Deploy wireless technology products that support enhanced user authentication interfaces such as the 802.1x security protocol specification that uses Extensible Authentication Protocol (EAP) and Remote Access Dial-In User Service (RADIUS). To fully leverage EAP security benefits, you should use tokens, smart cards and/or digital certificates to properly authenticate the wireless users.

* Perform periodic audits, including traditional physical security and technical vulnerability tests of wireless gateways and access points, and employ discovery audits using tools such as the freeware Netstumbler and Kismet in addition to commercial products such as WildPackets AiroPeek, AirMagnet Wireless Analyzers, and ISS Wireless Network Scanner. A growing number of commercial and freeware wireless LAN detection and testing tools are now being used on highly portable handheld computers such as the Sharp Zaurus and the Compaq Ipaq. Prominent network vulnerability testing tools such as the Internet Security Systems Internet Scanner have also recently added tests to locate and probe the security of known and unknown wireless network components.




Reprinted with permission from MIS Training Institute's TransMISsion Online. For a complete list of information security seminars and conferences available from MIS, go to: www.misti.com.