Is it possible to identify a fake wireless access point?

A network's identity is easy to fake. If you're looking for proof of a valid access point, Mike Chapple reveals some secure wireless options.

Mike Chapple, University of Notre Dame

With a wireless LAN hotspot, how do you know if you're connecting to a fake or real access point?

If you're using an unsecured network, quite simply, you don't. In that scenario, the only "proof" that you have of the network's identity is the service set identifier (SSID), or the "name" that is broadcast by the network. Unfortunately, anyone can configure a wireless network to have any SSID they'd like, so there is no real proof of identity in that case. When using an unsecured network, I strongly recommend configuring the host firewall to block all inbound connections. You should also use a VPN to encrypt all traffic between your computer and remote systems.

If you're looking for stronger proof of identity, you'll need to turn to secure wireless options. Wi-Fi Protected...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Access (WPA) provides a network connection when a shared secret key is verified. In a WPA scenario, a successful access attempt at least indicates that you're connecting to a network that is set up by someone who knew the shared secret. Unfortunately, if you're dealing with public hotspots, such verification generally isn't an option. Therefore, you'll need to assume the network is hostile. To ensure that you're practicing safe wireless networking, you should resort to the security measures I mentioned above.

More information:

Learn why public wireless networks present a raft of dangers.

Find out how mulitpots and 'evil twins' are bypassing enterprise Wi-Fi defenses.

This was last published in October 2007

How to troubleshoot iPhone and iPad connection problems

How to troubleshoot Android Wi-Fi connection problems

More than a quarter of London’s Wi-Fi networks are poorly secured

Wireless network setting considerations for Android troubleshooting

Please create a username to comment.

Use these CCSK practice questions to prep for the exam

CCSK cert guide author's insights into cloud security credential

Comparing single cloud vs. multi-cloud security challenges

5 principles of the network change management process

Small vendors that stand out in network automation

Top 5 VPN myths and misconceptions for IT organizations

Top 2020 IT priorities hold fast amid COVID-19; spending takes hit

How CIOs can combat the IT talent shortage

How companies can ensure success working from home

Manufacturer turns to micro apps to save time

End-user productivity becomes a priority for remote work

How to optimize the digital workspace experience

Identify the Google Cloud developer tools you need

Compare the 3 types of private cloud

How to deploy Terraform code in an Azure DevOps pipeline

Max Schrems accuses Ireland of ‘Kafkaesque’ delay in Facebook GDPR investigation

StrandHogg mobile vulnerability has evil twin

Is the Covid-19 crisis halting our progress on diversity in tech?

Dig Deeper on Wireless network security

How to troubleshoot iPhone and iPad connection problems

How to troubleshoot Android Wi-Fi connection problems

More than a quarter of London’s Wi-Fi networks are poorly secured

Wireless network setting considerations for Android troubleshooting

Related Q&A from Mike Chapple

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.