DOCSLIB.ORG

Opportunities and Challenges in Crowdsourced Wardriving

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Opportunities and Challenges in Crowdsourced Wardriving Opportunities and Challenges in Crowdsourced Wardriving Piotr Sapiezynski Radu Gatej Alan Mislove Sune Lehmann Technical University University Northeastern Technical University of Denmark of Copenhagen University of Denmark ABSTRACT even as a form of authentication [10]. Determining a mo- Knowing the physical location of a mobile device is crucial bile device’s location is typically accomplished in one of two for a number of context-aware applications. This informa- ways: First, mobile devices can use various satellite-based tion is usually obtained using the Global Positioning System systems (GPS, Galileo, or GLONASS). While most mobile (GPS), or by calculating the position based on proximity of devices today ship with dedicated GPS hardware, relying on WiFi access points with known location (where the posi- GPS alone for determining location has a number of down- tion of the access points is stored in a database at a central sides: obtaining an initial GPS fix introduces non-negligible server). To date, most of the research regarding the cre- delay, and causes significant power consumption. ation of such a database has investigated datasets collected Second, mobile devices can use WiFi localization. In brief, both artificially and over short periods of time (e.g., dur- WiFi localization works by having the mobile device listen ing a one-day drive around a city). In contrast, most in-use for advertised WiFi networks (each WiFi access point peri- databases are collected by mobile devices automatically, and odically announces its unique identifier or BSSID,aswellas are maintained by large mobile OS providers. the name of the network, referred to as SSID), and report As a result, the research community has a poor under- that list to a central server. The server then computes the standing of the challenges in creating and using large-scale most likely location of the mobile device and returns the re- WiFi localization databases. We address this situation using sult. Thus, for WiFi localization to be e↵ective, the server the deployment of over 800 mobile devices to real users over must have a pre-computed database of WiFi access points a 1.5 year period. Each device periodically records WiFi (APs) and their locations. Unfortunately, building such a scans and its GPS coordinates, reporting the collected data database is time-consuming and expensive: the database to us. We identify a number of challenges in using such must be comprehensive (covering many locations) and up- data to build a WiFi localization database (e.g., mobility of to-date (as new APs are deployed and existing ones move). access points), and introduce techniques to mitigate them. Originally, the aim of such databases was to enable in- We also explore the level of coverage needed to accurately door positioning through finger-printing [3, 9, 20] and later estimate a user’s location, showing that only a small subset through RF-modeling [15, 5]. Most recent work on indoor lo- of the database is needed to achieve high accuracy. calization achieves sub-meter accuracy by rotating the sens- ing device to simulate directional antennas [14]. As the APs became more wide spread it became possible to use them for Categories and Subject Descriptors outdoor localization as well. The databases were then cre- H.4 [Information Systems Applications]: Miscellaneous ated by manually going to di↵erent locations and recording the observed APs (often termed wardriving)[4,18,7,11]. Keywords Today, however, these databases are often built by having dedicated software on the mobile devices collect and report wifi; wardriving; mobility; location data back both in indoor [21, 27] and outdoor [2, 19, 26] contexts. Therefore, creating such a database at scale is typ- 1. INTRODUCTION ically only the domain of mobile OS providers (e.g., Apple, Localization is an increasingly important trend on mo- Google) or dedicated companies (e.g., Skyhook Wireless). bile devices today. Mobile applications use localization to As a result, the research community currently has a rel- provide users with accurate driving directions, recommen- atively poor understanding of large-scale WiFi localization dations for local points of interest (e.g., restaurants), and databases. In this paper, we address this situation by pro- viding insights into the challenges underlying the creation of Permission to make digital or hard copies of all or part of this work for personal or such a database, and the trade-o↵s in using them. We first classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation collect a data set based on a deployment of over 800 mobile on the first page. Copyrights for components of this work owned by others than the phones to students at a university in Copenhagen, Denmark author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or for over 1.5 years. These phones run a stock Android OS republish, to post on servers or to redistribute to lists, requires prior specific permission with custom collection software instrumented to gather GPS and/or a fee. Request permissions from [email protected]. location and overheard WiFi APs. IMC’15, October 28–30, 2015, Tokyo, Japan. Overall, we collect over 1.8M simultaneous measurements Copyright is held by the owner/author(s). Publication rights licensed to ACM. ACM 978-1-4503-3848-6/15/10 ...$15.00. of WiFi APs and GPS location, and observe more than 1.3M DOI: http://dx.doi.org/10.1145/2815675.2815711. unique WiFi APs. Many of the APs are only seen a small The app collects data both actively (it requests location number of times, so we focus on the 376K APs that we and WiFi updates every 5 minutes) and opportunistically observe at least five times. To the best of our knowledge, (whenever another app requests updates). In order to save this represents the most comprehensive data set of this kind the battery, most of the location data is obtained using the that has been examined in the research literature. Using this network and/or fused provider (i.e., an existing WiFi local- data set, we build a WiFi localization database for Copen- ization database). Since we intend to use the GPS mea- hagen. We discuss and identify a number of key challenges surements as ground truth, we focus only on the 10.5% of and issues in doing so: location readings that are provided by the GPS hardware. As a consequence, while the median sampling period be- The scale of the dataset. Most existing studies were tween GPS readings is 1 second, only 29% of per-user hourly performed either in controlled environments or over a short bins have at least one GPS sample (i.e., we only know the time. Here, we show that the WiFi landscape is constantly GPS location of users in 29% of the hours, on average). This changing, new access points are added and old ones are distribution is a consequence of apps like Google Maps that moved to new locations or retired. either use GPS data constantly or not at all. Mobility. With increasing trend of mobile WiFi APs, such Since we are studying WiFi localization databases, in the remainder of the paper we focus on the 1,794,473 GPS sam- as MiFi devices, routers on buses and trains, and mobile 1 phones which also serve as hotspots, we observe that discov- ples which happened within the same second as a WiFi ering and filtering mobile APs presents a significant chal- access point scan. According to our measurements, a single lenge. Failing to properly filter these can lead to gross errors WiFi scan lasts approximately 500 ms and this time does when estimating a device’s location. not depend on the number of saved networks. It is important to note that the securing the wireless net- Noisy data. Unsurprisingly, relying on commodity hard- work does not make it impossible to scan it: regardless of ware introduces noise into the measurements of location, the encryption, each router broadcasts its unique identifier signal strength, and detectability of APs, which must be and the name of the network in clear text.2 handled when inferring the location and mobility of APs. Filtering data. In the 567 days of observations, our partici- We also explore using the database we build to estimate pants observed 7,203,471 unique APs, out of which 1,320,838 the locations of devices given a set of overheard APs. Specif- (18.3%) were scanned at least once in the same second as ically, we examine the trade o↵ between the number of APs a GPS estimation. However, the majority of these APs in the database and the estimation accuracy. We show that were observed with a GPS estimation a very small number knowing the location of only a small fraction of all the APs of times: 944,904 (71.5%) have less than five observations. (3.7%) is actually needed to locate users to within 15 meters Thus, in the remainder of the paper, we focus only on the 75% of time. 375,934 APs that were observed at least five times together with a GPS estimate in the same second to build our WiFi localization database. 2. METHODS We now describe the data we use to build our WiFi local- 3. BUILDING THE DATABASE ization database. We now examine the collected data, with the goal of build- ing a WiFi localization database. Phone deployment. We use data collected by the Copen- hagen Networks Study experiment [23]. In this experiment, 3.1 Estimating the locations of APs students opt-in to receive a smartphone in exchange for The primary challenge we face is estimating the positions agreeing to let us use to collect data (e.g., Bluetooth and of the APs, given our WiFi scan data.
Load more

Recommended publications
  • Techbeat Spring 2004
    National Law Enforcement and Corrections Technology Center Spring 2004 ore and more, when it comes to more efficient, and more cost effective, “There are probably 10 different com- agencies are inundated with these things investigating vehicle crashes, but many departments lack the expertise panies that make measuring devices and don’t necessarily know how to distance measuring tapes and to use them,” Krenning says. To help and 30 different companies that make choose which they want to use.” wheels, hand-drawn sketches, bring law enforcement agencies up to computer-aided drafting (CAD) programs M (See Scene of the Crash, page 10) and ink pens are out and computers and speed on current crash scene technolo- for law enforcement,” Mael says. “Police lasers are in. gies, NLECTC–Rocky Mountain last year “The days of going out and measur- initiated a technology assistance program ing skidmarks and using calculus to titled “Crash Scene Technologies,” which determine speed are over,” says Troy is available to law enforcement Krenning, a program manager at the agencies at no cost. National Institute of Justice’s National Last year, Krenning says, Law Enforcement and Corrections approximately 120 officers from Technology Center (NLECTC)–Rocky Colorado, Montana, and Kansas Mountain in Denver, Colorado. “These took the week-long course, a mix data are now captured in the vehicle’s of classroom presentations and black box.” hands-on exercises designed for According to William Mael, a trans- experienced crash scene investi- n a recent television commercial a portation safety consultant in Fort gators dealing with major acci- stressed-out office worker takes his laptop to a park and uses his Collins, Colorado, the technology for dents.
    [Show full text]
  • Securing Wireless Networks in Today’S Connected World, Almost Everyone Has at Least One Internet-Connected Device
    Securing Wireless Networks In today’s connected world, almost everyone has at least one internet-connected device. With the number of these devices on the rise, it is important to implement a security strategy to minimize their potential for exploitation (see Securing the Internet of Things). Internet-connected devices may be used by nefarious entities to collect personal information, steal identities, compromise financial data, and silently listen to— or watch—users. Taking a few precautions in the configuration and use of your devices can help prevent this type of activity. What are the risks to your wireless network? Whether it’s a home or business network, the risks to an unsecured wireless network are the same. Some of the risks include: Piggybacking If you fail to secure your wireless network, anyone with a wireless-enabled computer in range of your access point can use your connection. The typical indoor broadcast range of an access point is 150–300 feet. Outdoors, this range may extend as far as 1,000 feet. So, if your neighborhood is closely settled, or if you live in an apartment or condominium, failure to secure your wireless network could open your internet connection to many unintended users. These users may be able to conduct illegal activity, monitor and capture your web traffic, or steal personal files. Wardriving Wardriving is a specific kind of piggybacking. The broadcast range of a wireless access point can make internet connections available outside your home, even as far away as your street. Savvy computer users know this, and some have made a hobby out of driving through cities and neighborhoods with a wireless-equipped computer— sometimes with a powerful antenna—searching for unsecured wireless networks.
    [Show full text]
  • I Am the Antenna: Accurate Outdoor AP Location Using Smartphones
    I Am the Antenna: Accurate Outdoor AP Location using Smartphones Zengbin Zhang†, Xia Zhou†, Weile Zhang†§, Yuanyang Zhang†, Gang Wang†, Ben Y. Zhao† and Haitao Zheng† †Department of Computer Science, UC Santa Barbara, CA 93106, USA §School of Electronic and Information Engineering, Xian Jiaotong University, P. R. China {zengbin, xiazhou, yuanyang, gangw, ravenben, htzheng}@cs.ucsb.edu, [email protected] ABSTRACT 1. INTRODUCTION Today’s WiFi access points (APs) are ubiquitous, and pro- WiFi networks today are ubiquitous in our daily lives. vide critical connectivity for a wide range of mobile network- WiFi access points (APs) extend the reach of wired networks ing devices. Many management tasks, e.g. optimizing AP in indoor environments such as homes and offices, and en- placement and detecting rogue APs, require a user to effi- able mobile connectivity in outdoor environments such as ciently determine the location of wireless APs. Unlike prior sports stadiums, parks, schools and shopping centers [1, 2]. localization techniques that require either specialized equip- Even cellular service providers are relying on outdoor WiFi ment or extensive outdoor measurements, we propose a way APs to offload their 3G traffic [2, 3]. As Internet users be- to locate APs in real-time using commodity smartphones. come reliant on these APs to connect their smartphones, Our insight is that by rotating a wireless receiver (smart- tablets and laptops, the availability and performance of to- phone) around a signal-blocking obstacle (the user’s body), morrow’s networks will depend on well tuned and managed we can effectively emulate the sensitivity and functionality access points.
    [Show full text]
  • Security of Mobile Devices and Wi-Fi Networks
    Hong Zimeng Security of Mobile Devices and Wi-Fi Networks Bachelor’s Thesis Information Technology May 2015 DESCRIPTION Date of the bachelor's thesis 28. 05. 2015 Author(s) Degree programme and option Hong Zimeng Information Technology Name of the bachelor's thesis Security of Mobile Devices and Wi-Fi Networks Abstract Along with the progress of times and the development of science and technology, mobile devices have become more and more popular. At the same time, an increasing number of Wi-Fi networks are being built for the demand of mobile devices. Therefore, the security between mobile devices and Wi-Fi networks became a main object in the IT area. The purpose of the thesis is to analyze security threats and give relative advises for all the mobile device and Wi-Fi network users. The thesis mainly talks about two types security issues. For individual mobile device users, the threats mainly come from the public Wi-Fi networks they are using to transmit important message or information. For enterprise Wi-Fi networks, the security focus on preventing organization from mobile devices attacks. In order to reach the security object for individual mobile device users and enterprise Wi-Fi networks, the purpose of security technologies are from three dimensions: confidentiality, integrity and authentication. As an example of a secure communication method for mobile device users to encrypted data transmission I implement a clientless SSL based VPN connection between a mobile device and a firewall. The thesis could be used as a security guide for mobile device users and Wi-Fi network organizations, helping them to prevent security from Internet attacks.
    [Show full text]
  • WARDRIVING Menggunakan Aplikasi WIGLE Wi – Fi Wardriving
    WARDRIVING Menggunakan aplikasi WIGLE Wi – Fi Wardriving OLEH : Rizky Soufi Gustiawan ( 09011281520111 ) JURUSAN SISTEM KOMPUTER FAKULTAS ILMU KOMPUTER UNIVERSITAS SRIWIJAYA 2019 Latarbelakang Wigle merupakan salah satu dari sekian banyak Tools yang bisa digunakan sebagai Hacking Wireless, proses yang kita lakukan saat ingin meretas atau Hacking sebuah jaringan Wireless disebut“Wardriving”. Wigle bisa digunakan pada Device sekelas smartphone ,fungsiya juga tidak jauh berbeda dengan yang ada di versi PC,hanya saja ketika digunakan di smartphone fungsinya jadi jauh lebih baik karna smartphone lebih mudah dibawa ketimbang laptop. Sebagai Tools yang digunakan untuk meretas sebuah jaringan Wireless , Wigle akan sangat membantu proses Wardriving dan tentunya Wigle akan sangat berguna untuk mempelajari proteksi kemanan jaringan Wireless. Seperti yang kita ketahui , Access point yang biasa digunakan di sebuah instalasi pastinya sudah tertanam enkripsi karna Access Point tersebut menggunakan standarisasi IEEE 802.11b yang tertanam juga didalamnya WEP , WPA , WPA2. untuk proteksi keamanan yang tinggi gunakanlah Password atau Passphrase yang unik agar keamanan yang diciptakan menjadi setingkat lebih diatas standarnya. Wigle juga bisa mengexport file dalam bentuk .kml , sehingga memudahkan kita menggunakan GooglEarth sebagai tools pendukungnya,walaupun nantinya GoogleEarthlah yang akan digunakan untuk Mapping jaringan wirelessnya. 1. Pendahuluan Wi-Fi merupakan singkatan dari Wireless Fidelity merupakan teknologi wireless yang populer untuk saling menghubungkan antar komputer, PDA, laptop dan perangkat lainnya, menghubungkan komputer dan device lain ke internet (misalnya di Café kita sering melihat tulisan Wi-Fi Hotspot) atau ke jaringan kabel (ethernet) LAN. Wi-Fi merupakan sebuah wireless LAN brand dan trademark dari Wi-Fi Alliance yang beralamat di www.wi-fi.org, sebuah asosiasi yang beranggotakan Cisco, Microsoft, Apple, Dell dan masih banyak lagi yang lainnnya.
    [Show full text]
  • A Study in Wireless Attacks and Its Tools
    Eleventh LACCEI Latin American and Caribbean Conference for Engineering and Technology (LACCEI’2013) ”Innovation in Engineering, Technology and Education for Competitiveness and Prosperity” August 14 - 16, 2013 Cancun, Mexico. A Study in Wireless Attacks and its Tools José J. Flores Polytechnic University of Puerto Rico, Hato Rey, PR, [email protected] Alfredo Cruz, PhD Polytechnic University of Puerto Rico, Hato Rey, PR, [email protected] ABSTRACT Every day the world is becoming more connected through the use of networks, specifically wireless local area networks (WLANs). At the same time, the significance of wireless security continues to grow. Similar to others aspects of life, computers networks are susceptible to criminal activity. As new technologies emerge so does security vulnerabilities which threaten the stability of computer networks. These vulnerabilities can be exploited by criminals with a variety of purposes, which some could be related to causing damage or simply stealing information. This paper researches a set of wireless attacks and some of the tools used to perform them. Through their usage it tries to create awareness of today’s usage of a specific wireless encryption that have been long proven to be unsecure. Keywords: Hacking Tools, Security, Wireless, Wireless Attacks 1. INTRODUCTION Nowadays mostly everyone is connected to a computer network, in particular the Internet. This network of computers has become critical for many institutions, including governments, universities, large and small companies, and private citizens that rely on it for professional activities. However, similar to others aspects of life, computers networks are susceptible to criminal activity, such as causing damage to the computer, violating users’ privacy, stealing information or rendering inoperable the network services on which an institution may rely.
    [Show full text]
  • Remotely Owning Android and Ios
    BROADPWN Remotely Owning Android and iOS Nitay Artenstein whoami • Twitter: @nitayart • Reverse engineer and vulnerability researcher • Focusing on Android, WiFi and basebands AGENDA • Are fully remote exploits still viable? • How we found an attack surface suitable for remote exploitation • The story of a powerful WiFi bug, and how it was leveraged into a fully remote exploit REMOTE EXPLOIT != BROWSER EXPLOIT If the victim has to click, it’s not a true remote “New secrets about torture in “Facebook alerts that attempts have government prisons” been made to access your account” THE THREE LAWS OF REMOTE EXPLOITS A REMOTE MAY NOT REQUIRE HUMAN INTERACTION TO TRIGGER. LIMITED ATTACK SURFACE A REMOTE MAY NOT REQUIRE COMPLEX ASSUMPTIONS ABOUT THE SYSTEM’S STATE. IMPOSSIBLE WITH ASLR A REMOTE MUST LEAVE THE SYSTEM IN A STABLE STATE. CRASHING == FAILURE THE THREE LAWS OF REMOTE EXPLOITS A REMOTE MAY NOT REQUIRE HUMAN INTERACTION TO TRIGGER. LIMITED ATTACK SURFACE A REMOTE MAY NOT REQUIRE COMPLEX ASSUMPTIONS ABOUT THE SYSTEM’S STATE. IMPOSSIBLE WITH ASLR A REMOTE MUST LEAVE THE SYSTEM IN A STABLE STATE. CRASHING == FAILURE NOT AN EASY TASK ATTACKING ANDROID/IOS DEP Application ASLR Processor PXN/PAN ATTACKING ANDROID/IOS WiFi Chip Baseband Application Processor BASEBANDS iPhone Samsung Galaxy and Note Google Nexus Some LGs and HTCs WIFI CONTROLLERS iPhone Samsung Galaxy and Note Google Nexus Some LGs and HTCs WIFI BONUS Broadcom chips have no DEP or ASLR, and all memory is RWX!!! DIVING INTO THE WIFI SOC PREVIOUS WORKS ABOUT BCM • Gal Beniamini
    [Show full text]
  • Wardriving BRIC.Indd
    TECH NOTE ENGINEERING ADVENTURES- WARDRIVING WITH BRIC BRIC (Broadcast Reliable Internet Codec) has been under development by us at Comrex for some time. It holds the promise of a new and flexible way to deliver high-quality live remote broadcast audio over a variety of IP based networks like DSL, Cable modems, high-speed cellular, and 802.11x (Wi-Fi). It’s the latter that is especially exciting, given the widespread deployment of “Hotspots” in an increasing number of restaurants, bookstores, airports and other easily accessible locations. To the Comrex engineering staff, the theory that BRICs would prove useful over Wi-Fi was sound, but too often the “real world” leaves theory lacking. So it was on March 30, 2005, an unseasonably warm and sunny New England day, that the engineering team set forth boldly to test BRIC on as many pub- licly available hotspots as possible. This is the story of that venture and its results. ENGINEERS GONE WILD 1 19 Pine Road, Devens, MA 01434 USA • Tel: 978-784-1776 • Fax: 978-784-1717 • Toll Free: 800-237-1776 • www.comrex.com • e-mail: [email protected] The final hardware for the ACCESS codec (the first codec to truly be a BRIC) was still very much underway and we used the prototype system pictured. The package obviously resem- bles your typical incendiary device and we did not want to alarm to public (or the authori- ties) with our testing so we felt it wise to encase the system in a laptop bag, which could be left discretely at our feet while the system was remote controlled by a harmless-looking laptop.
    [Show full text]
  • The Impact of War Driving on Wireless Networks
    ISSN:2231-0711 Ch.Sai Priya et al | IJCSET |June 2013 | Vol 3, Issue 6, 230-235 The Impact of War Driving On Wireless Networks Ch.Sai Priya, Syed Umar, T Sirisha Department of ECM, KL University, A.P., INDIA. Abstract — Wardriving is searching for Wi-Fi wireless WarDriving originated from wardialing, a technique networks by moving vehicle. It involves using a car or truck popularized by a character played by Matthew Broderick in and a Wi-Fi-equipped computer, such as a laptop or a PDA, to the film WarGames, and named after that film. Wardialing detect the networks. It was also known as 'WiLDing' (Wireless in this context refers to the practice of using a computer to LAN Driving).Many wardrivers use GPS devices to measure dial many phone numbers in the hopes of finding an active the location of the network find and log it on a website. For better range, antennas are built or bought, and vary from modem. Omni directional to highly directional. Software for A WarDriver drives around an area, often after mapping a wardriving is freely available on the Internet, notably, Nets route out first, to determine all of the wireless access points tumbler for Windows, Kismet for Linux, and KisMac for in that area. Once these access points are discovered, a Macintosh. WarDriver uses a software program or Web site to map the results of his efforts. Based on these results, a Keywords — Wardriving, hacking, wireless, wifi cracking. statistical analysis is performed. This statistical analysis can be of one drive, one area, or a general overview of all 1.
    [Show full text]
  • The Librarian's Disaster Planning and Community Resiliency Workbook
    The Librarian’s Disaster Planning and Community Resiliency Workbook Librarians Fulfilling Their Role as Information First Responders PRESENTED BY THE PO BOX 520 | 185 WEST STATE STREET | TRENTON NJ 08625 www.njstatelib.org FUNDED BY A GRANT FROM THE THE LIBRARIAN’S DISASTER PLANNING AND COMMUNITY RESILIENCY WORKBOOK Librarians Fulfilling Their Role as Information First Responders Table of Contents Section A-1: Emergency Action Plan ........................................................................................................... 3 Suggested Table of Contents .................................................................................................................... 4 Time of Event ........................................................................................................................................... 4 Library Location and Identification Information ...................................................................................... 4 Reporting Emergencies ............................................................................................................................. 5 Evacuate Notice ........................................................................................................................................ 5 Move to a Central Shelter Notice .............................................................................................................. 5 Shelter–In-Place Notice ...........................................................................................................................
    [Show full text]
  • What Where Wi: an Analysis of Millions of Wi-Fi Access Points
    What Where Wi: An Analysis of Millions of Wi-Fi Access Points Kipp Jones, Ling Liu College of Computing, Computing Science and Systems Division Georgia Institute of Technology, Atlanta, GA, USA {kippster, lingliu}@cc.gatech.edu Abstract— With the growing demand for wireless Internet some benefit to the public. According to Broadband Wireless 1 access and increasing maturity of IEEE 802.11 technologies, Exchange , the top hotspot providers now have over 40,000 wireless networks have sprung up by the millions throughout hotspots worldwide. the world as a popular means for Internet access. An The wave of municipal wireless networks like those being increasingly popular use of Wi-Fi networking equipment is to rolled out in cities around the country offer another motivation for provide wireless ‘hotspots’ as the wireless access points (APs) this study. Public enterprise has become extremely interested in the to the Internet. These APs are installed and managed by value that a city-wide wireless infrastructure could provide both for individuals and businesses in an unregulated manner – the efficiency and the capabilities of the public servants, as well as allowing anyone to install and operate one of these devices for the universal access that such an infrastructure could provide to using unlicensed radio spectrum. This has allowed literally help bridge the digital divide. millions of these APs to become available and ‘visible’ to any interested party who happens to be within range of the radio Some look at the sea of access points and find commercial value. Companies such as FON2 and WiFiTastic3 are out to help waves emitted from the device.
    [Show full text]
  • Using Wireless Technology Securely
    Using Wireless Technology Securely US-CERT In recent years, wireless networking has become more available, affordable, and easy to use. Home users are adopting wireless technology in great numbers. On-the-go laptop users often find free wireless connections in places like coffee shops and airports. If you’re using wireless technology, or considering making the move to wireless, you should know about the security threats you may encounter. This paper highlights those threats, and explains what you need to know to use wireless safely, both in the home and in public. You will find definitions of underlined terms in the glossary at the end of this paper. Home Wireless Threats By now, you should be aware of the need to secure traditional, wired internet connections.* If you’re planning to move to a wireless connection in your home, take a moment to consider what you’re doing: You’re connecting a device to your DSL or cable modem that broadcasts your internet connection through the air over a radio signal to your computers. If traditional wired connections are prey to security problems, think of the security problems that arise when you open your internet connection to the airwaves. The following sections describe some of the threats to home wireless networks. Piggybacking If you fail to secure your wireless network, anyone with a wireless-enabled computer within range of your wireless access point can hop a free ride on the internet over your wireless connection. The typical indoor broadcast range of an access point is 150 – 300 feet. Outdoors, this range may extend as far as 1,000 feet.
    [Show full text]