4.1 Securing Wireless and Mobile
Wireless Network Installation and Troubleshooting
Importance of Site Survey
- A site survey is crucial for understanding wireless network performance.
- It helps identify interference from neighboring networks.
- Assessing current access points (APs) is a primary step in conducting a site survey.
Understanding Current Access Points
- Identify access points part of your network and those in the nearby area.
- Adjust configurations to minimize interference from external access points.
Spectrum Analysis
- Site surveys detail the current spectrum and optimal channels for wireless networks.
- Regular intervals for site surveys are advisable to account for technological changes and new access points.
Visualizing Wireless Networks with Heat Maps
- A heat map visually represents signal strength across physical space.
- In heat maps:
- Yellow/red areas indicate stronger signals.
- Darker/bluer areas indicate weaker signals.
- Heat maps provide insight into expected signal strengths throughout different rooms.
Wireless Survey Tools
- Tools can provide a summary of wireless networks present nearby, including:
- BSSID: Basic Service Set Identifier
- Channel Information
- Frequencies in Use
- They help to identify the best coverage access points and track interference.
- Useful for diagnosing problem areas in your wireless network.
Built-in Tools on Operating Systems
- Operating systems include utilities or interfaces for evaluating wireless network performance.
- Third-party tools:
- Example: NetSpot, which provides detailed reports on nearby wireless networks and metrics.
Spectrum Analyzer
- Useful for identifying signals on specific frequencies from any device, not just access points.
Mobile Device Management (MDM)
Definition of MDM
- MDM stands for Mobile Device Manager, which manages company and user-owned devices.
BYOD (Bring Your Own Device)
- Refers to employees using personal devices for both personal and work purposes.
- Devices must adhere to company requirements for MDM management.
MDM Functions
- Administrators can enforce policies, application requirements, and control features (e.g., disabling the camera at work).
- Segments the device for business use while maintaining personal privacy.
- Security policies such as:
- Mandatory screen locks after inactivity.
- Re-login requirements with passwords or PINs.
Procedures for Mobile Device Changes
- Importance of data deletion from sold/traded in older devices.
- Integration of new devices into the MDM system.
Corporate Owned Personally Enabled (COPE)
- Definition: Company purchases and assigns devices to employees.
- COPE devices can be used for both corporate and personal purposes.
- Ensures corporate data is separated from personal data.
Choose Your Own Device (CYOD)
- Users can select from available corporate-owned devices that meet their needs.
Security Challenges for Mobile Devices
Mobile Data Security Issues
- Mobile devices are often portable and could be located anywhere, leading to potential access by unauthorized individuals.
- Critical to keep mobile device software updated to maintain security.
Cellular Network Standards
- Standards such as 4G and 5G operate within defined geographical areas known as cells, lending to the term 'cell phones.'
- Concerns regarding traffic monitoring and location tracking.
Wi-Fi Security Concerns
- Wi-Fi devices have internet access, requiring the use of encrypted connections (e.g., VPNs) in public spaces.
- Risks include:
- Traffic monitoring by nearby attackers.
- On-path attacks, where attackers intercept communications.
- Denial of service attacks caused by interference.
Bluetooth Security Risks
- Bluetooth connects devices over short ranges (known as a Personal Area Network, PAN).
- Risks of unauthorized access to data on mobile devices.
- Mandatory pairing process for Bluetooth connections to ensure device security.
- Users should avoid automatic pairing with unknown devices.