News

The "danger" of wireless access? Exaggerated?

by Guy Kewney | posted on 01 March 2003


A really good, thoughtful analysis by eWeek writer Cameron Sturdevant, suggests that the knee-jerk reaction of most IT staff when they discover a rogue access point, should be reconsidered.

Guy Kewney

Sturdevant has an excellent point: the appearance of rogues isn't going to stop. They're cheap, they're easy to install, and above all, they're useful. So why not take the trend on board?

His argument is if users add a WLAN AP, there's quite possibly a good reason for it. Rather than swift disciplinary action, why not install a legitimate AP in this location?

"It's so easy to add a wireless access point," he writes. "And at $60 to $100, an access point is even within my 'purchase authority.'"

Discovery of a rogue access point "usually leads to a swift, simple response: disconnection with lecture ... but is this the right response?" he asks. "Before pulling the plug on the next unauthorised access point, take a moment to ask a few simple questions."

Sturdevant stops short of making the accusation that he might well make. One question he might ask is: "If adding a WLAN access point makes the network insecure, what does this tell us about the level of overall security on the network?"

In a recent feature article, NewsWireless Net quoted Microsoft's own chief network administrator, John Biccum - who claimed that his wireless LAN was actually more secure than the wired network. It can be done, if only authorised and authenticated users are allowed to log onto the network.

But Studevant suggests you don't have to go that far. He suggests that the first obvious question to ask is whether the access point can be centrally managed - and if they can be, why not adopt them? If they are "top-of-the-line products like Cisco's Aironet product family or Symbol Technologies' Mobius wireless system, [they] can be brought into the management fold."

And more tellingly, he asks, "what was the motivation for the wireless installation? If departments or even individual employees installed and used a wireless LAN, it's worth finding out why they did it." Better, he suggests, to adopt the attitude that "if wireless technology must come, it's far better to embrace it with corporate guidelines that help people understand appropriate use."

The full article is at eWeek and I'm sure Cameron would appreciate feedback. So would I!