Appendix G

consociate Program Material Appendix GWireless LAN Vulnerabilities MatrixComplete the pursual matrix by filling in the inane boxes in the table.Security protection Brief description Vulnerabilities bar (if any) MAC address filtering Only allows access to a device if its MAC address matches that of a pre-approved tend on the router. MAC Spoofing Dont entrust on MAC filtering alone. Open system certification (SSID beaconing) Disables SSID from being broadcast so wireless networks be harder to detect. A spectrum analyzer arouse still be utilised to find the network name. Create a more complex SSID and password settings in your APWEPStands for pumped up(p) Equivalency Privacy. Uses 64 bit or 128 bit encryption. (including 24-bit IV) In larger networks, IVs sight be duplicated and cause collisions, which are easy to detect by outside influences Use WPA2 with AES or similar kinda on larger, enterprise deployments.Of the six categories of attackers, the one I would roughly wan t to break into my network would be hackers, as they attempt to penetrate your network and tell on vulnerabilities, then inform you of them. This is opposed to a cracker, which get out do the same thing, only steal the entropy and attempt to sell it. A script kiddie is truly dangerous, as they are generally under-experienced hackers and crackers who use someone elses codes and almost always reach malicious intent.Between MAC filtering, WEP, and authentication, I believe that WEP is the most secure of the three. MAC filtering can be advantageously overcome by MAC spoofing, and is not get down of the 802.11 standard. Authentication is somewhat weaker than WEP, as someone could acquire the cleartext challenge phrase and the encrypted response frame and get along access to the network. WEP is the strongest of the 3, but is still weak receivable to IV collisions which can be monitored and the hacker can recover the security key during those collisions.In fact, hackers can yet cause massive IV collisions to speed up the process. It should be noted this is really only an theme on larger wireless networks as on that point are approximately 16 million IVs that can be handed out. still in an enterprise application, 16 million can happen in a matter of hours or days.