Upload
amrit-sian
View
222
Download
0
Embed Size (px)
Citation preview
8/7/2019 wifi a-31
1/40
Wi-FiPresented By-
8/7/2019 wifi a-31
2/40
Wifi What it standsfor?
Wi-fi suggests Wireless-Fidelity, compared with the long
established audio recording term High Fidelity or Hi-Fi.Wi-Fi is simply a trademarked term meaning IEEE 802.11x.
.
.
8/7/2019 wifi a-31
3/40
When Wi-Fi
Originated ? The precursor to wi-fi was invented in
1991 by NCR Corporation in Nieuwegein,
the Netherland. The first wireless products were brought
on the market under the name WaveLAN
with speeds of 1 Mbit/s to 2 Mbit/s.
Vic Hayes has been named as father of
Wi-Fi.
8/7/2019 wifi a-31
4/40
The Architecture
8/7/2019 wifi a-31
5/40
How Wi-Fi Works?
8/7/2019 wifi a-31
6/40
Wi-Fi Standards
Standard Speed Freq band Notes
802.11 2 Mbps 2.4 GHz (1997)
802.11a 54 Mbps 5 GHz (1999)802.11b 11 Mbps 2.4 GHz
802.11g 54 Mbps 2.4 GHz
8/7/2019 wifi a-31
7/40
StandardsIEEE 802.11.b 2.4GHz 11Mbps
Introduction to Wireless /802.11b
International standard for wireless networking that
operates in the 2.4 GHz frequency range (2.4 GHz to2.4835 GHz) and provides a throughput of up to 11 Mbps
with a range of just over 300 feet indoors. This is a very
commonly used frequency. Microwave ovens, cordless
phones, medical and scientific equipment, as well as
Bluetooth devices, all work within the 2.4 GHz frequencyband.
8/7/2019 wifi a-31
8/40
StandardsIEEE 802.11.b 2.4GHz 11Mbps
Introduction to Wireless /802.11b
802.11b enables transfers of up to 11 Mbps.
Comparable to 10BaseT in speeds, 802.11b is the mostcommon wireless standard deployed today. In
comparison T1 speeds are 1.54Mbps and DSL is
normally in the 640Kbps range.
Most deployments of Wireless utilize 802.11b
8/7/2019 wifi a-31
9/40
StandardsIEEE 802.11.a 5GHz 11Mbps
Introduction to Wireless /802.11b
International standard for wireless networking that
operates in the 5 GHz frequency range (5.725 GHz to
5.850 GHz) with a maximum 54 Mbps data transferrate. The 5 GHz frequency band is not as crowded as
the 2.4 GHz frequency, because the 802.11a
specification offers more radio channels than the
802.11b. These additional channels can help avoidradio and microwave interference.
Cost of 802.11a equipment is approximately twice thatof 802.11b and current deployment is limited.
8/7/2019 wifi a-31
10/40
Standards IEEE 802.11.b 2.4GHz 11Mbps IEEE 802.11.a 5GHz 54 Mbps
IEEE 802.11g 2.4Ghz Hybrid11/54Mbps
802.11g is in the final stages ofdevelopment. The current draft (V5.0) is
open for comments until January 8, 2003.
Introduction to Wireless /802.11b
8/7/2019 wifi a-31
11/40
802.11a (Contd)
54 Mbps
48 Mbps36 Mbps
24 Mbps
12 Mbps2 Mbps
5.5 Mbps
11 Mbps
802.11a 802.11b
8/7/2019 wifi a-31
12/40
..
What a wireless network is made up of:
Wireless Network cards
-Radios which send and receive signals from other radios or
access points, usually PCMCIA* cards which fit into Laptop
expansion slots, or PCI Bus in case of Desktop computers.
(There are other, simpler options using USB).PDAs like Blackberry, and Pocket PC having a compact flash
slot can also connect.
*PCMCIA Personal Computer Memory Card International Association.
8/7/2019 wifi a-31
13/40
..
What a wireless network is made up of:
Base stations, Access points, or
Gateways-The base station sends and receives radio signals to and
from the Wi-Fi radio in your laptop or PC, enabling you to
share your Internet connection with other users on the
network. Access points and gateways have a wide range offeatures and performance capabilities, but they all provide
this basic network
connection service.
8/7/2019 wifi a-31
14/40
WLAN ArchitectureAd Hoc Mode Ad-Hoc mode: Peer-to-peer setup where
clients can connect to each other directly.
Generally not used for business networks.
8/7/2019 wifi a-31
15/40
WLAN Architecture--Mesh
Mesh: Every client in
the network also acts
as an access or relay
point, creating a self-healing and (in
theory) infinitely
extensible network.
Not yet in widespread
use, unlikely to be in
homes.
8/7/2019 wifi a-31
16/40
WLAN ArchitectureInfrastructure Mode
To Wired Network
8/7/2019 wifi a-31
17/40
17
Propagation Characteristics
900MHz
Multipath: High
Foliage: Pine (Absorb Radiation)
2.4GHzMultipath: Very High (Concrete, Brick, Steel)
Foliage: Any Absorbs Radiation (water resonance)
5GHz
Multipath: Very High (Concrete, Brick, Steel, Foliage)
Foliage: Limited Absorption
As you increase the frequency, the coverage areadecreases but potential data rates increase.
8/7/2019 wifi a-31
18/40
Elements of a WI-FI Network Access Point (AP) - The AP is a wireless LAN
transceiver or base station that can connect one ormany
wireless devices simultaneously to the Internet.
Wi-Fi cards - They accept the wireless signal and relayinformation.They can be internal and external.(e.g PCMCIA
Card for Laptop and PCI Card for Desktop PC)
Safeguards - Firewalls and anti-virus software protectnetworks from uninvited users and keep information secure.
8/7/2019 wifi a-31
19/40
How a Wi-Fi Network Works Basic concept is same as Walkie talkies.
A Wi-Fi hotspot is created by installing an access point
to an internet connection.
An access point acts as a base station. When Wi-Fi enabled device encounters a hotspot the
device can then connect to that network wirelessly.
A single access point can support up to 30 users and
can function within a range of 100 150 feet indoors andup to 300 feet outdoors.
Many access points can be connected to each other via
Ethernet cables to create a single large network.
8/7/2019 wifi a-31
20/40
Wi-Fi Configurations
8/7/2019 wifi a-31
21/40
Wi-Fi Configurations
8/7/2019 wifi a-31
22/40
Wi-Fi Configurations
8/7/2019 wifi a-31
23/40
Wi-Fi SecurityThe requirements for Wi-Fi network
security can be broken down into two
primary components:
Authentication
User Authentication
Server Authentication
Privacy
8/7/2019 wifi a-31
24/40
WiFi 24
Security techniques
WEP( wired equivalent privacy) 64/128 bits
Using RC4 algorithm, almost permanent key, very week
security, able to crack by collecting statistic
Current security level for 99.9% products on the market.
TKIP (temporal key integrity protocol )Used RC4 algorithm with with a 128-bit "temporal key"
but changes temporal keys every 10,000 packets and key dependes
on address and sequence number.
Will be required to obtain WiFi certification from 09/01/03
AE
S (Advanced Encryption Standard )New, much more stronger encryption, protect against hacker frames in
insertion. Need hardware accelerator. Optional feature.
8/7/2019 wifi a-31
25/40
Security (Encryption, Content Filtering, Privacy, etc.)
Partition The Network
A safe practice is to create two separate
networks. A private network for day to daybusiness and a network for public access.
Both can be wireless. These networks can
talk to one another through a proxy server
that will protect the private network frommalicious attacks via the public network.
8/7/2019 wifi a-31
26/40
Security (Encryption, Content Filtering, Privacy, etc.)
Encryption
Encryption on the pubic network can be usedbut would create administrative overhead.
Encryption keys would have to be changedregularly and anyone using their own laptopwould have to be given the key.
Encryption works best in a network that does
not allow people to use their own laptops. Encryption increases privacy, but can be
thwarted, either by software, or by gainingaccess to a PC configured with wireless andwriting down the key.
8/7/2019 wifi a-31
27/40
Security (Encryption, Content Filtering, Privacy, etc.)
Content Filtering & Proxy ServersWeb content filtering that has generally been
software on the desktop would have to be handled
by a server if people are allowed to use their ownlaptops.
Proxy servers allow you to control what informationpeople have access to. This is a good practice
anyway, allowing you to control at a global levelwhat information travels over your network. It alsoallows you to track usage.
8/7/2019 wifi a-31
28/40
Security (Encryption, Content Filtering, Privacy, etc.)
Viruses and Hacker
Wireless does not add any additional threat
in the way of viruses.
Anyone, anywhere can attack a network
that is connected to the Internet. Wireless
does not increase that chance. Security
measures such as firewalls, can reduce therisk.
8/7/2019 wifi a-31
29/40
Wi-Fi Security Threats Wireless technology doesnt remove any
old security issues, but introduces new
ones
Eavesdropping
Man-in-the-middle attacks
Denial of Service
8/7/2019 wifi a-31
30/40
Eavesdropping Easy to perform, almost impossible to detect
By default, everything is transmitted in clear text
Usernames, passwords, content ...
No security offered by the transmission medium
Different tools available on the internet
Network sniffers, protocol analysers . . .
P
assword collectors With the right equipment, its possible to
eavesdrop traffic from few kilometers away
8/7/2019 wifi a-31
31/40
MITM Attack1. Attacker spoofes a
disassociate messagefrom the victim
2. The victim starts to look
for a new access point,and the attackeradvertises his own APon a different channel,using the real APs MAC
address3. The attacker connects
to the real AP usingvictims MAC address
8/7/2019 wifi a-31
32/40
Denial of Service Attack on transmission frequecy used
Frequency jamming
Not very technical, but works
Attack on MAC layer Spoofed deauthentication / disassociation messages
can target one specific user
Attacks on higher layer protocol (TCP/IP protocol)
SYN Flooding
8/7/2019 wifi a-31
33/40
Authentication Keeping unauthorized users off the network
User Authentication
Authentication Server is used
Username and password
Risk:
Data (username & password) send before secure channel
established
Prone to passive eavesdropping by attacker Solution
Establishing a encrypted channel before sending username
and password
8/7/2019 wifi a-31
34/40
Authentication (cont..) Server Authentication
Digital Certificate is used
Validation of digital certificate occurs
automatically within client software
8/7/2019 wifi a-31
35/40
..
Typical Community Wifi ConstituentsHigh gain Parabolic grid antennas
to beam the signal to over 30kmfrom tower to tower..
Customer Premises equipment
(CPE) to access the signal from thetowers..
Sector antennas to beam the signal
from the towers to the communityusers
Other components that need to be
installed in order to put the above
systems together
8/7/2019 wifi a-31
36/40
Environment Assessment
Look at the structure of your building.
Steel, Concrete, Stone, Glass
Open w/ few walls or many separaterooms?
Current technologies used
Do you use a 2.4 GHz cordless phone?Does it work throughout your environment?
8/7/2019 wifi a-31
37/40
Advantages Mobility
Ease of Installation
Flexibility
Cost Reliability
Security
Use unlicensed part of the radio spectrum
Roaming
Speed
8/7/2019 wifi a-31
38/40
Advantages of Wi-Fi over other means
Wi-fi can make access publicly available at
wi-fi hotspots.
Does not require regulatory approval forindividual.
Wi-fi network can support roaming.
Wi-fi allows local area network to deployedwithout wires for client devices.
8/7/2019 wifi a-31
39/40
8/7/2019 wifi a-31
40/40
Limitations Interference
Degradation in performance
High power consumption Limited range