New encryption technology closes WLAN security loopholes
Bill Frantz
frantz at pwpconsult.com
Mon Sep 24 17:26:23 EDT 2001
At 12:36 PM -0700 9/24/01, ji at research.att.com wrote:
>>While we are on the topic, it seems to me that the other implication
>>of 802.11 is that the Ethernet backbone in most offices can no longer
>>be considered secure.
>
>Given the number of people with laptops who bring them in and out of
>your average firewalled network, nothing can be considered secure. Or
>people spreading viruses, for that matter.
>
>/ji
>
>
>[Moderator's Note: To expand on John's point, many organizations were
>infected with Code Red by people plugging their laptops in to the
>corporate LAN after running them outside the LAN, or were infected via
>VPN tunnels from machines on the outside that were incorrectly not
>thought of as being part of the security perimeter. In the face of
>such attacks, firewalls can no longer stop worms or viruses from
>entering a firm. --Perry]
Or in other words, the first requirement for perimeter security is a perimeter.
Cheers - Bill
-------------------------------------------------------------------------
Bill Frantz | The principal effect of| Periwinkle -- Consulting
(408)356-8506 | DMCA/SDMI is to prevent| 16345 Englewood Ave.
frantz at pwpconsult.com | fair use. | Los Gatos, CA 95032, USA
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list