| IBM Research: Press Resources | |
Return to Web version |
Linux-based tool helps security experts protect wireless networks from hackers
The security auditor runs on a small wireless PDA. This small form factor will give security consultants the mobility needed to assess companies' wireless network security. For ease of use, the audit information is presented on a color coded user interface, with properly configured access points shown in green, and vulnerable ones shown in red. Detailed information is also available for all access points, including station and network name, address, location, and security state.
"Today's wireless networks are facing big security challenges," says Dave Safford, manager of Network Security at IBM Research. "As 802.11 wireless networks become more common, companies' intranets are increasingly being exposed to drive-by hacking. Our Wireless Security Auditor will be an essential tool for security experts to maintain wireless network security."
Existing security for 802.11 wireless consists of two subsystems: a data encryption technique called Wired Equivalent Privacy (WEP) and an authentication algorithm called Shared Key Authentication. WEP and Shared Key are optional, and wireless access points are typically shipped with both turned off. Wireless network security needs to be checked very frequently as employees often add new wireless devices, which may become easy access points for hackers. This tool will allow security consultants to find what access points exist and examine their configuration so that they can take proper steps to keep the wireless network secure.
