There is no arguing that having a wireless home network is very convenient. Have you ever had fights about whose turn it was to use the desktop computer? Perhaps somebody needed to look for some information on the Internet, or somebody needed to urgently print out some documents and you were right in the middle of a conversation in your messenger. Of course the problem could be solved by purchasing a computer for every member of the family, but then you would have another problem: all those cumbersome wires which were running through the house. All these problems can be easily solved if you set up a Wi-Fi network at home. It would allow several users to access shared resources (computers, printers, internet connections, etc) at the same time.
Many people trying to set up a wireless network at home hurry to get their Internet connectivity working as quickly as possible. And it is easy to understand because everyone wants to see what benefits a wireless network brings into their life. But on the other hand, neglecting some important details, while setting up the network, may cause numerous security issues. An unsecured wireless network can serve as an open invitation for intruders to walk right in to your computer and steal your personal data, upload malware onto your computer, or intimidate you in any other way. That’s why it is better for you to take some time and follow the steps described below to secure your home wireless network.
1) Change administrator passwords and usernames: To create a wireless network you need an access point or a router. To start the setup process you have to go to a definite Web page where you will be asked to enter your network address and account information. This Wi-Fi setup page is supposed to be protected with a login screen (username and password). In reality, manufacturers sell the same model router with the same simple usernames and passwords. The default passwords and usernames are well-known to hackers and are often listed on some Internet sites. Many people never change them and thus, they make a hackers’ job a lot easier. If you don’t want to join such people, you should change the username and password after the very first login. A good piece of advice is to choose for your password not a common English word but rather a combination of letters and numbers. (choose a combination of letters and numbers rather than a common English word)
2) Change the default system ID: Any router sold at a store already comes with a default system ID called the SSID (Service Set Identifier). The common names of SSIDs are «wireless», «linksys» or «default». A lot of users do not change the default SSID, and even though on the one hand it will not allow anyone to break into your network, on the other hand, this will serve as a light beacon for hackers. People who don’t configure their network properly are much more likely to be attacked. That’s why changing the default SSID should be one of your priorities when configuring wireless security on your network.
3) Turn on MAC address filtering: MAC address, or physical address, is a unique code assigned to each Wi-Fi device to identify it. By default, it is usually off because it is a bit time-consuming to be set up properly. To enable MAC address filtering you will have to use the administrative account to configure a list of clients that will be granted access to the network. If a device that is not on the list tries to connect to your network, it will be denied any access. However, this feature is not very powerful. Professional hackers with suitable software may fake MAC addresses.
4) Turn off SSID broadcast: By default, any router or access point broadcasts the network name (SSID) over the air at regular intervals. Initially, this feature was necessary for mobile companies and large organizations so that their clients would know when they are in or out of range. But this feature is absolutely unnecessary for a wireless LAN because it actually serves no useful purpose. As the network administrator, you can easily disable this feature and you should do it so that intruders wouldn’t think of it as an invitation to join your network.
5) Position the router or access point optimally: A Wi-Fi signal is obviously stronger closer to the router (or access point), but it radiates from it equally in all directions. If you think that Wi-Fi signals know where your house ends, you will be disappointed to know that they often can reach your neighbors’ houses. Actually, the further the signals reach, the easier it is for intruders to detect them. That is why it is advised to position your router or access point somewhere in the center of the house and not by the windows or doors.
6) Upgrade your Wi-Fi encryption: Encryption is used to scramble information which is sent over wireless networks so that nobody could read it easily. There are two most popular encryption technologies for Wi-Fi: WEP and WPA. Even though WEP encryption technology has been criticized a lot for inadequacies and it can be hacked within 1 minute, many users continue to use it. In its turn, WPA was developed in response to the drawbacks of WEP. It provides strong encrypted authentication, access control, and encrypted data traffic. Unfortunately, it doesn’t provide end-to-end encryption meaning that it only encrypts the traffic between your wireless NIC (Network interface Card) and the access point.
In this situation using a VPN (virtual private network) can help to solve the problem. Like WEP and WPA, VPN tunnels conceal traffic sent over the air, but unlike WEP and WPA, they extend over any intervening network. A VPN shields the content of any Wi-Fi connection by encrypting the data and routing it through a trusted network.
This VPN feature becomes even more valuable if you are one of a company’s remote workers. The necessity to stay connected at home and on the road requires for you to take even more care about your Wi-Fi security. That is why when using a VPN, one of the first things you should do is to combine your VPN client with endpoint security software to make sure the VPN is running whenever a wireless link connects and breaks the high-speed wireless connection if the VPN tunnel goes down. You should also set up personal firewalls to prevent non-VPN traffic from entering or leaving through wireless networks.
Only combining different methods of protection can guarantee your security when using wireless connections.
To learn more tips about how to protect yourself when using a wireless network check «Security Tips for Using Wi-Fi Networks»
