Chapter 7
Joining BBS
Roaming & channel
- roaming = walk/change away from initial AP network to another AP network
802.11a
- 54Mbps in 5Ghz range
- not compatible
802.11g
- 54Mbps in 2.4GHz range
- compatible
802.11b
- 11Mbps in 2.4GHz range
- compatible
Open system authentication
- Service Set Identifier (SSID)
- Station must specify SSID to connect to the AP
Interception
- signal week by 3 factor:
1. Wall
2. floor
3. interference
802.11
- 3 basic security service:
1. Authentication
2. Integrity - data will be encrypt by using WEP & WPA technique.
3. Confidential
* Some say WPA is much more secure than WEP but its actually depends on what type of shared key that actually base on ots library. the it use a simple library so it would be easy to crack and hack the network
Passive attack
- Attacker collect all trafic
- Attacker collect two message
1. encrypted with same key and IV
2. Statistical attack to reveal plain text
3. Plaintext X0R chipertext = keystream
Tool to crack the wireless AP
- Backtrack
Chapter 8
- Internet connectivity is essintial
- act as perimeter defence
- effective of firewall produce secure network
Capabilities
- Single chocke point that keep unauthorize user to get out from the protected network
- Provide location for monitoring security event
Type of firewall
1. Packet filtering firewall
2. statefull inspection firewall
3. Application level gateway (application proxy)
4. circuit level gateway
Firewall hosting
- Bastion host = single firewall that cover a network territory
- Host-base = single firewall protect a single workstation/server
VPN
- Create a secure LAN connection through an internet.
- outsider will tgought that we in a LAN network but actually we use the internet.
Distributed firewall
- A firewall installed per subnet in a network
Joining BBS
Roaming & channel
- roaming = walk/change away from initial AP network to another AP network
802.11a
- 54Mbps in 5Ghz range
- not compatible
802.11g
- 54Mbps in 2.4GHz range
- compatible
802.11b
- 11Mbps in 2.4GHz range
- compatible
Open system authentication
- Service Set Identifier (SSID)
- Station must specify SSID to connect to the AP
Interception
- signal week by 3 factor:
1. Wall
2. floor
3. interference
802.11
- 3 basic security service:
1. Authentication
2. Integrity - data will be encrypt by using WEP & WPA technique.
3. Confidential
* Some say WPA is much more secure than WEP but its actually depends on what type of shared key that actually base on ots library. the it use a simple library so it would be easy to crack and hack the network
Passive attack
- Attacker collect all trafic
- Attacker collect two message
1. encrypted with same key and IV
2. Statistical attack to reveal plain text
3. Plaintext X0R chipertext = keystream
Tool to crack the wireless AP
- Backtrack
Chapter 8
- Internet connectivity is essintial
- act as perimeter defence
- effective of firewall produce secure network
Capabilities
- Single chocke point that keep unauthorize user to get out from the protected network
- Provide location for monitoring security event
Type of firewall
1. Packet filtering firewall
2. statefull inspection firewall
3. Application level gateway (application proxy)
4. circuit level gateway
Firewall hosting
- Bastion host = single firewall that cover a network territory
- Host-base = single firewall protect a single workstation/server
VPN
- Create a secure LAN connection through an internet.
- outsider will tgought that we in a LAN network but actually we use the internet.
Distributed firewall
- A firewall installed per subnet in a network