Is it possible to identify a fake wireless access point?

A network's identity is easy to fake. If you're looking for proof of a valid access point, Mike Chapple reveals some secure wireless options.

Mike Chapple, University of Notre Dame

With a wireless LAN hotspot, how do you know if you're connecting to a fake or real access point?

If you're using an unsecured network, quite simply, you don't. In that scenario, the only "proof" that you have of the network's identity is the service set identifier (SSID), or the "name" that is broadcast by the network. Unfortunately, anyone can configure a wireless network to have any SSID they'd like, so there is no real proof of identity in that case. When using an unsecured network, I strongly recommend configuring the host firewall to block all inbound connections. You should also use a VPN to encrypt all traffic between your computer and remote systems.

If you're looking for stronger proof of identity, you'll need to turn to secure wireless options. Wi-Fi Protected...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Access (WPA) provides a network connection when a shared secret key is verified. In a WPA scenario, a successful access attempt at least indicates that you're connecting to a network that is set up by someone who knew the shared secret. Unfortunately, if you're dealing with public hotspots, such verification generally isn't an option. Therefore, you'll need to assume the network is hostile. To ensure that you're practicing safe wireless networking, you should resort to the security measures I mentioned above.

More information:

Learn why public wireless networks present a raft of dangers.

Find out how mulitpots and 'evil twins' are bypassing enterprise Wi-Fi defenses.

This was last published in October 2007

Dig Deeper on Wireless network security

How to troubleshoot iPhone and iPad connection problems As iPhone and iPad Wi-Fi clients proliferate in the enterprise, IT must troubleshoot Wi-Fi connection problems. Here's how to solve basic iPhone and iPad connection problems.

How to troubleshoot Android Wi-Fi connection problems Android smartphone and tablet users now abound in the enterprise, making Android Wi-Fi connection troubleshooting a key element of enterprise wireless network connection management.

Wireless network setting considerations for Android troubleshooting Wireless expert Lisa Phifer addresses Android troubleshooting and the ways that changing wireless network settings could solve connectivity problems.

Defeating Evil Twin attacks Evil Twins pose a clear and present danger to wireless users on public and private WLANs. This tip describes steps that you can take to defend users against this poorly-understood attack. Learn why SSL or SSH may not be enough to protect your users and how 802.1X mutual authentication can help defeat these phony APs.

How to find an SSID and identify neighboring WLANs Wireless network expert Lisa Phifer explains what an SSID is and how to identify and differentiate between neighboring WLAN identifiers in this expert response.

Wireless network security: Controlling secondary connections Secondary connections are the latest threat to corporate wireless networks and require more than password protection to remain secured.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

Please create a username to comment.

Benefits of using Azure Security Center for security assessments

Use Azure Security Center to conduct a security posture assessment

How container adoption affects container security

3 challenges of edge computing, IoT network adoption

Juniper Mist roadmap includes SD-WAN, security integrations

Why Secure Access Service Edge is the future of SD-WAN

Town of Falmouth pursues automation innovation to save costs

Don't let edge computing security concerns derail your plans

Risk-based digital identity benefits CIOs, CMOs and customers

HP rolls out new remote workstation product ZCentral

4 ways to fix Windows 10 boot problems

When not to convert basic disks to dynamic disks

How to start your cloud career

Save money on instances with these cloud discounts

Google joins bare-metal cloud fray

Mystery surrounds leak of four billion user records

Court of Appeal dismisses Post Office application to appeal damning judgment

Figeac Aero manages growth with DataCore software-defined storage

Dig Deeper on Wireless network security

Related Q&A from Mike Chapple

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.