Wireless Network Connections, WLAN (Wireless Local Area Network) or Wi-Fi as it is often abbreviated to, is a fantastic technology that comes with conveniences such as being able to have an internet connection on your laptop without a cable, or using internet connections at hotels/shops et or even sharing printers and consoles wirelessly throughout the house. It is being used by more and more people around the world every day because of it's nifty features.

The Problem

Although Wi-Fi is a fantastic technology with lots of superb benefits, it also brings in a lot of security problems. Many people do not know how to correctly setup a wireless network, and a big mistake is often using default factory settings and not encrypting your network. Not encrypting means absolutely anyone can access your network, internet connection, even in extreme cases spy on you and retrieve any data that is being carried across the network.

Luckily though, wireless networks can be encrypted and this would certainly be a good idea, to protect your internet access and computer data.

Say you've just realised your network is totally unsecured and unencrypted and want to do something about it. Well, luckily, we might be able to find some answers.

You may remember within the network setup that there was a part asking if you would like to set a Key or Network Access Code. This is what encrypts your network and keeps the internet baddies out. You can access the settings on your router page for setting a key. The internet address for your wireless router should be in the instruction manual (e.g. http://192.168.1.1 or similar).

Protecting your network

There are 2 different types of wireless encryption for home users - WEP and WPA. Sadly, one of them is not secure by any means and should be avoided.

The trouble with WEP

WEP stands for Wired Equivalent Privacy. The idea behind WEP was that the same security protocols that are used across Ethernet (wired) networks would be used, but wirelessly and with a generated key. However, the massive flaw with this idea was that absolutely anyone could "sniff" the data flying around wirelessly, and this data, or packets, contains a part of the key. Using free programs on the internet, even a novice hacker could enter a way into your WEP protected network in literally seconds, making it just as venerable as having no protection at all.

So what about WPA? Doesn't that have the same risks?

Simply - No. WPA (Wi-Fi protected access) is a much more sophisticated security method for wireless networks that was invented when the flaws with the WEP security methods were first found. Plus, WPA is what businesses use to protect their data, so home data should definitely be safe. The flaw though? Well, not all equipment is fully compatible with WPA encryption. The Nintendo DS Wi-Fi Connection is a prime example of this - you simply cannot connect to a network protected with WPA. So if you have a DS, I say - get a Sony PSP. At least that can connect to WPA protected networks.

Anyway, if you wish to know, WPA shared-key mode (mainly used for home users) works by anything from 8 to 63 characters to make a passphrase, which is the key for your network, and this is stored within the wireless router. However, the big change from WEP security is that it uses a technology called PBKDF2, which randomises and protects the key from being sniffed from data sent (and the data sent across the wireless network would be completely encrypted and unreadable). WPA has no known security flaws, apart from the possibility of a Brute Force attack, but that is only possible if you have a short password and a really determined hacker. Giving a long password

Is there any more I can do to protect my network further?

If you're really worried about someone sniffing into your network, or having a go at breaking into it, then there is a few more methods you can use to keep the unwanted out. Bear in mind though that the more methods you use, the harder it will be to set up wireless equipment, and there will be a lower chance of equipment actually being able to connect to it.

One option is to make your network hidden, so that it does not appear when you scan for networks, however this would be of no advantage unless your network was protected with WPA already, as advanced tolls and software can easily pick up and even read "hidden" signals.

Another buzzword often used is MAC Address Filtering, however this can be a big headache to set up, as you would have to find the MAC Codes for all of the equipment in your house that connects to the wireless network and type them in, and also for each new product you get that uses your Wi-Fi network, and finally its totally unsecure as using software found easily on the internet, allowed MAC addresses can be read from picking up data flying around your wireless network, and then spoofed (a hacker changing his computer to use an allowed MAC address), which would totally defeat the point of what you were trying to do. So that is not a method I recommend.

Finally

It's not really worth being paranoid about other people getting into your wireless network, unless you live in a busy urban/residential area where shady men with laptops might hang out and try to steal internet connections. However, if you have no encryption, that would obviously be a reason to be highly worried as anyone could instantly connect to it. If you have WEP, don't stress about it, but I do recommend changing it to WPA, at it is far more secure. And if you have a visible WPA network, that is absolutely fine for security, chances are no-one would even bother trying to get into a WPA protected network when there are so many unencrypted and WEP encrypted ones around. And even if they do, it would be extremely unusual for them to get anywhere - the only way they could would be if you had a really easy to guess password!

Anyway I hope this information helps, and if you need advice on setting up or changing settings on your wireless network, then do feel free to contact us, and we'll try and assist where possible!

If you live within the Cumbria area of United Kingdom, we can also do callouts to provide wireless network support and setup as well as general computer support and help services. For more information visit the Computer Support page.