Back Cover
Expert guidance for securing your 802.11 networks
Learn best practices for securely managing, operating, and scaling WLANs
Comprehend the security-related technological underpinnings of WLANs
Explore new security protocols in 802.11i and WPA and learn how they prevent attacks
Review centralized deployment models for wired/wireless integration
Deepen your knowledge of defense by understanding the tools that attackers use to perform reconnaissance and to attack authentication and encryption mechanisms
Understand how to design secure WLANs to support enterprise applications with the new standards and practices detailed in this book
Reference the next generation authentication standards and protocols
Find out about mobility, hotspots, and campus wireless networks
Grasp Open Authentication, MAC-based authentication, shared key authentication, EAP authentication protocols, WEP, WPA, and 802.11i
Cisco Wireless LAN Security is an in-depth guide to wireless LAN technology and security, introducing the key aspects of 802.11 security by illustrating major wireless LAN (WLAN) standards that can protect the entire network. Because a WLAN is less effective as an isolated piece of the network, this book emphasizes how to effectively integrate WLAN devices into the wired network while maintaining maximum security.
Cisco Wireless LAN Security covers the spectrum of WLAN security, including protocols and specifications, vulnerabilities and threats, and, especially, deployment patterns and design guidelines. With a unique combination of theory and practice, this book addresses fundamental wireless concepts, such as WEP, and innovations, such as EAP, switching, and management. Each chapter includes detailed illustrations, checklists, design templates, and other resources. You will also find generic wireless deployment patterns based on real-world customer installations and functional examples of architecture, design, and best practices.
Whether you currently design, configure, implement, and maintain WLANs or simply want to explore wireless security issues, Cisco Wireless LAN Security has everything you need to understand how to create a seamlessly secure, impenetrable 802.11 network.
Krishna Sankar is a distinguished engineer at Cisco Systems, Inc. For the past 20 years, he has held positions in software architecture and development and industrial engineering. Krishna is an author, speaker, and technology evangelist.
Sri Sundaralingam is a technical marketing manager in the Wireless Networking Business Unit at Cisco Systems. Sri has extensive customer contact and is responsible for developing and marketing enterprise and carrier networking solutions using the Cisco Aironet Series of wireless LAN products.
Andrew Balinsky is a network security test engineer at Cisco Systems. His introduction to computer security was through the Air Force Information Warfare Center, where he did everything from tracking hackers to developing security software.
Darrin Miller currently works as a security researcher at Cisco Systems. He has been in the networking industry for more than 15 years and has authored several white papers on network security.
This book is part of the Networking Technology Series from Cisco Press??? which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.
top
Contents
1. Securing WLANs Overview.
WLAN: A Perspective.
Wireless LAN Components and Terminology.
WLAN Standards.
WLAN Security.
WLAN Security Domain Conceptual Model.
Navigating This Book and Contexts.
Summary.
2. Basic Security Mechanics and Mechanisms.
Security Mechanics.
Confidentiality Mechanisms.
Encryption Algorithm Strengths and Weaknesses.
Integrity Mechanisms.
Key Management.
Authentication and Identity Protocols.
PPP Authentication Protocols.
The TACACS+ Protocol.
The RADIUS Protocol.
The Kerberos Protocol.
IPv6.
IPSec.
Summary.
3. WLAN Standards.
Standards Organizations, Position, Context, and Influence.
IEEE.
Wi-Fi Alliance.
Wireless LAN Association.
Hardware/Radio/Waves and Modulation.
FCC Regulations.
Radio Technologies in 802.11.
Brief Discussion on Relevant Standards.
IEEE 802.11.
IEEE 802.11b.
Channel Allocation.
IEEE 802.11a.
IEEE 802.11g.
IEEE 802.11f.
IEEE 802.11e.
IEEE 802.11k.
IEEE 802.11h.
Light Weight Access Point Protocol.
Summary.
4. WLAN Fundamentals.
WLAN: Elements and Characteristics.
WLAN Basic Topology.
WLAN Building Blocks.
Services.
Frames.
WLAN State Diagram.
Basic Choreography.
Beacon.
Probe.
Authentication.
Deauthentication.
Association.
Reassociation.
Disassociation.
Data.
Reason and Status Codes.
WEP.
Summary.
5. WLAN Basic Authentication and Privacy Methods.
Authentication Mechanics.
Open Authentication.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Applications, Vulnerabilities, and Countermeasures.
Auditing and Accounting.
MAC-Based Authentication.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Auditing and Accounting.
Applications, Vulnerabilities, and Countermeasures.
Shared-Key Authentication.
Protocol Choreography.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Auditing and Accounting.
Applications, Vulnerabilities, and Countermeasures.
WEP Privacy Mechanics.
WEP Processing Model.
Vulnerabilities.
Summary.
6. Wireless Vulnerabilities.
Attacker Objectives.
Attack Trees.
Reconnaissance Attacks.
Sniffing and SSIDs.
Sniffing Tools.
Wardriving and Its Tools.
DoS Attacks.
Disassociation and Deauthentication Attacks.
Transmit Duration Attack.
Authentication Attacks.
Shared-Key Authentication Attacks.
MAC Address Spoofing.
WEP Keystream and Plaintext Recovery.
Keystream Dictionaries.
Methods for Recovering RC4 Keystreams.
Uses for Recovered Keystreams.
WEP Key Recovery Attacks.
Dictionary-Based Key Attacks.
The Fluhrer-Mantin-Shamir Attack.
Attacks on EAP Protocols.
Summary of 802.1x and EAP.
Dictionary Attack on LEAP.
PEAP Man-in-the-Middle Attack.
Rogue Aps.
Ad-Hoc Mode Security.
Summary.
7. EAP Authentication Protocols for WLANs.
Access Control and Authentication Mechanisms.
The Three-Party Model.
Layered Framework for Authentication.
EAP.
EAP Frames, Messages, and Choreography.
EAP Authentication Mechanisms.
PEAP.
PEAP Frame Format.
PEAP Arbitrary Parameter Exchange.
PEAP Choreography.
802.1x: Introduction and General Principles.
EAPOL.
Cisco LEAP (EAP-Cisco Wireless).
EAP-FAST.
EAP-FAST Frame Format.
EAP-FAST Choreography.
Summary.
8. WLAN Encryption and Data Integrity Protocols.
IEEE 802.11i.
Encryption Protocols.
WEP.
TKIP (802.11i/WPA).
CCMP.
CCMP Encapsulation.
CCMP Decapsulation.
CCM Algorithm.
Key Management.
Master Key Establishment.
Key Hierarchy.
Key Exchange.
Security Associations.
WPA and Cisco Protocols.
Cisco Protocols.
WPA.
Security Problems Addressed.
Reconnaissance.
DoS Attacks.
Shared-Key Authentication Attacks.
MAC Address Spoofing.
Message Modification and Replay.
Dictionary-Based WEP Key Recovery.
WEP Keystream Recovery.
Fluhrer-Mantin-Shamir Weak Key Attack.
Rogue Aps.
Security Considerations of EAP.
Summary.
9. SWAN: End-to-End Security Deployment.
Overview of SWAN Security Features.
WLAN Deployment Modes and Security Features.
SWAN Infrastructure Authentication.
Radio Management and Wireless Intrusion Detection.
SWAN Fast Secure Roaming (CCKM).
Local 802.1x RADIUS Authentication Service.
Summary.
10. Design Guidelines for Secure WLAN.
WLAN Design Fundamentals.
WLAN Security Policy.
Device Support.
Authentication Support.
Network Services Placement.
Mobility.
Application Support.
Management of the Aps.
Radio Coverage Design.
Multigroup Access.
General Security Recommendations.
AP Recommendations.
WLAN Client Recommendations.
Infrastructure Recommendations.
New WLAN Deployments.
Embedded Security Solutions.
VPN Overlays.
Combined VPN and Embedded Security Design.
Integration with Existing WLAN Deployments.
WPA Upgradeable, WEP Only, and Pre-WEP Devices.
Integrated Deployments.
SWAN Central Switch Design Considerations.
Admission Control Design.
Summary.
11. Operational and Design Considerations for Secure WLANs.
Rogue AP Detection and Prevention.
SWAN Rogue AP Detection.
Manual Rogue AP Detection.
Network-Based Rogue AP Detection.
WLAN Services Scaling.
RADIUS Best Practices.
VPN Best Practices.
Enterprise Guest Access.
Enterprise Guest Access Requirements.
Enterprise Guest Access Design.
Summary.
12. WLAN Security Configuration Guidelines and Examples.
Cisco Enterprise Class Wireless LAN Products.
Cisco Aironet AP1200 Access Point.
Cisco Aironet AP1100 Access Point.
Cisco Aironet AP350 Access Point.
Cisco Aironet BR350 Bridge.
Cisco Aironet BR1410 Bridge.
Cisco Aironet 802.11b/a/g and Cisco Client Extensions-Enabled Devices.
Cisco Secure Access Server.
Cisco Wireless LAN Solution Engine.
Catalyst 6500 Wireless LAN Services Module.
WLAN Security Methods: Configuration Guidelines and Examples.
Navigating the HTML GUI Configuration Pages.
IOS CLI Configuration Examples and Guidelines.
SWAN Nonswitching Deployment: Configuration Guidelines and Examples.
Basic WDS Configuration.
Fast Secure Roaming (CCKM) Configuration.
RF Aggregation Configuration and Rogue AP Detection.
Local Authentication Configuration (RADIUS Fall-Back Service).
Securing Bridge-to-Bridge Links.
Secure WLAN Management Configuration Guidelines.
SWAN Central Switching Deployment: Configuration Guidelines and Examples.
Summary.
13. WLAN Deployment Examples.
Large Enterprise Deployment Examples.
Large Enterprise WLAN Deployment Example I.
Large Enterprise WLAN Deployment Example II.
Vertical Deployment Examples.
Retail WLAN Deployment Example I.
Retail WLAN Deployment Example II.
University WLAN Deployment Example.
Financial WLAN Deployment Example I.
Financial WLAN Deployment Example II.
Healthcare WLAN Deployment Example I.
Healthcare WLAN Deployment Example II.
Manufacturing WLAN Deployment Example.
Small and Medium Businesses and SOHO WLAN Deployments.
Medium Enterprise WLAN Deployment Scenario Example.
Small Office WLAN Deployment Example.
SOHO WLAN Deployment Scenario Example.
Hotspot (Public WLAN) Deployment Examples.
Coffee Shop WLAN Hotspot Deployment Example.
Airport WLAN Deployment Example.
Summary.
Appendix A. Resources and References.
http://rapidshare.com/files/14502983/cisco.press.cisco.wireless.lan.security.nov.2004.isbn1587051540.chm
Expert guidance for securing your 802.11 networks
Learn best practices for securely managing, operating, and scaling WLANs
Comprehend the security-related technological underpinnings of WLANs
Explore new security protocols in 802.11i and WPA and learn how they prevent attacks
Review centralized deployment models for wired/wireless integration
Deepen your knowledge of defense by understanding the tools that attackers use to perform reconnaissance and to attack authentication and encryption mechanisms
Understand how to design secure WLANs to support enterprise applications with the new standards and practices detailed in this book
Reference the next generation authentication standards and protocols
Find out about mobility, hotspots, and campus wireless networks
Grasp Open Authentication, MAC-based authentication, shared key authentication, EAP authentication protocols, WEP, WPA, and 802.11i
Cisco Wireless LAN Security is an in-depth guide to wireless LAN technology and security, introducing the key aspects of 802.11 security by illustrating major wireless LAN (WLAN) standards that can protect the entire network. Because a WLAN is less effective as an isolated piece of the network, this book emphasizes how to effectively integrate WLAN devices into the wired network while maintaining maximum security.
Cisco Wireless LAN Security covers the spectrum of WLAN security, including protocols and specifications, vulnerabilities and threats, and, especially, deployment patterns and design guidelines. With a unique combination of theory and practice, this book addresses fundamental wireless concepts, such as WEP, and innovations, such as EAP, switching, and management. Each chapter includes detailed illustrations, checklists, design templates, and other resources. You will also find generic wireless deployment patterns based on real-world customer installations and functional examples of architecture, design, and best practices.
Whether you currently design, configure, implement, and maintain WLANs or simply want to explore wireless security issues, Cisco Wireless LAN Security has everything you need to understand how to create a seamlessly secure, impenetrable 802.11 network.
Krishna Sankar is a distinguished engineer at Cisco Systems, Inc. For the past 20 years, he has held positions in software architecture and development and industrial engineering. Krishna is an author, speaker, and technology evangelist.
Sri Sundaralingam is a technical marketing manager in the Wireless Networking Business Unit at Cisco Systems. Sri has extensive customer contact and is responsible for developing and marketing enterprise and carrier networking solutions using the Cisco Aironet Series of wireless LAN products.
Andrew Balinsky is a network security test engineer at Cisco Systems. His introduction to computer security was through the Air Force Information Warfare Center, where he did everything from tracking hackers to developing security software.
Darrin Miller currently works as a security researcher at Cisco Systems. He has been in the networking industry for more than 15 years and has authored several white papers on network security.
This book is part of the Networking Technology Series from Cisco Press??? which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.
top
Contents
1. Securing WLANs Overview.
WLAN: A Perspective.
Wireless LAN Components and Terminology.
WLAN Standards.
WLAN Security.
WLAN Security Domain Conceptual Model.
Navigating This Book and Contexts.
Summary.
2. Basic Security Mechanics and Mechanisms.
Security Mechanics.
Confidentiality Mechanisms.
Encryption Algorithm Strengths and Weaknesses.
Integrity Mechanisms.
Key Management.
Authentication and Identity Protocols.
PPP Authentication Protocols.
The TACACS+ Protocol.
The RADIUS Protocol.
The Kerberos Protocol.
IPv6.
IPSec.
Summary.
3. WLAN Standards.
Standards Organizations, Position, Context, and Influence.
IEEE.
Wi-Fi Alliance.
Wireless LAN Association.
Hardware/Radio/Waves and Modulation.
FCC Regulations.
Radio Technologies in 802.11.
Brief Discussion on Relevant Standards.
IEEE 802.11.
IEEE 802.11b.
Channel Allocation.
IEEE 802.11a.
IEEE 802.11g.
IEEE 802.11f.
IEEE 802.11e.
IEEE 802.11k.
IEEE 802.11h.
Light Weight Access Point Protocol.
Summary.
4. WLAN Fundamentals.
WLAN: Elements and Characteristics.
WLAN Basic Topology.
WLAN Building Blocks.
Services.
Frames.
WLAN State Diagram.
Basic Choreography.
Beacon.
Probe.
Authentication.
Deauthentication.
Association.
Reassociation.
Disassociation.
Data.
Reason and Status Codes.
WEP.
Summary.
5. WLAN Basic Authentication and Privacy Methods.
Authentication Mechanics.
Open Authentication.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Applications, Vulnerabilities, and Countermeasures.
Auditing and Accounting.
MAC-Based Authentication.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Auditing and Accounting.
Applications, Vulnerabilities, and Countermeasures.
Shared-Key Authentication.
Protocol Choreography.
Trust Model and Assumptions.
Supporting AAA Infrastructure.
Auditing and Accounting.
Applications, Vulnerabilities, and Countermeasures.
WEP Privacy Mechanics.
WEP Processing Model.
Vulnerabilities.
Summary.
6. Wireless Vulnerabilities.
Attacker Objectives.
Attack Trees.
Reconnaissance Attacks.
Sniffing and SSIDs.
Sniffing Tools.
Wardriving and Its Tools.
DoS Attacks.
Disassociation and Deauthentication Attacks.
Transmit Duration Attack.
Authentication Attacks.
Shared-Key Authentication Attacks.
MAC Address Spoofing.
WEP Keystream and Plaintext Recovery.
Keystream Dictionaries.
Methods for Recovering RC4 Keystreams.
Uses for Recovered Keystreams.
WEP Key Recovery Attacks.
Dictionary-Based Key Attacks.
The Fluhrer-Mantin-Shamir Attack.
Attacks on EAP Protocols.
Summary of 802.1x and EAP.
Dictionary Attack on LEAP.
PEAP Man-in-the-Middle Attack.
Rogue Aps.
Ad-Hoc Mode Security.
Summary.
7. EAP Authentication Protocols for WLANs.
Access Control and Authentication Mechanisms.
The Three-Party Model.
Layered Framework for Authentication.
EAP.
EAP Frames, Messages, and Choreography.
EAP Authentication Mechanisms.
PEAP.
PEAP Frame Format.
PEAP Arbitrary Parameter Exchange.
PEAP Choreography.
802.1x: Introduction and General Principles.
EAPOL.
Cisco LEAP (EAP-Cisco Wireless).
EAP-FAST.
EAP-FAST Frame Format.
EAP-FAST Choreography.
Summary.
8. WLAN Encryption and Data Integrity Protocols.
IEEE 802.11i.
Encryption Protocols.
WEP.
TKIP (802.11i/WPA).
CCMP.
CCMP Encapsulation.
CCMP Decapsulation.
CCM Algorithm.
Key Management.
Master Key Establishment.
Key Hierarchy.
Key Exchange.
Security Associations.
WPA and Cisco Protocols.
Cisco Protocols.
WPA.
Security Problems Addressed.
Reconnaissance.
DoS Attacks.
Shared-Key Authentication Attacks.
MAC Address Spoofing.
Message Modification and Replay.
Dictionary-Based WEP Key Recovery.
WEP Keystream Recovery.
Fluhrer-Mantin-Shamir Weak Key Attack.
Rogue Aps.
Security Considerations of EAP.
Summary.
9. SWAN: End-to-End Security Deployment.
Overview of SWAN Security Features.
WLAN Deployment Modes and Security Features.
SWAN Infrastructure Authentication.
Radio Management and Wireless Intrusion Detection.
SWAN Fast Secure Roaming (CCKM).
Local 802.1x RADIUS Authentication Service.
Summary.
10. Design Guidelines for Secure WLAN.
WLAN Design Fundamentals.
WLAN Security Policy.
Device Support.
Authentication Support.
Network Services Placement.
Mobility.
Application Support.
Management of the Aps.
Radio Coverage Design.
Multigroup Access.
General Security Recommendations.
AP Recommendations.
WLAN Client Recommendations.
Infrastructure Recommendations.
New WLAN Deployments.
Embedded Security Solutions.
VPN Overlays.
Combined VPN and Embedded Security Design.
Integration with Existing WLAN Deployments.
WPA Upgradeable, WEP Only, and Pre-WEP Devices.
Integrated Deployments.
SWAN Central Switch Design Considerations.
Admission Control Design.
Summary.
11. Operational and Design Considerations for Secure WLANs.
Rogue AP Detection and Prevention.
SWAN Rogue AP Detection.
Manual Rogue AP Detection.
Network-Based Rogue AP Detection.
WLAN Services Scaling.
RADIUS Best Practices.
VPN Best Practices.
Enterprise Guest Access.
Enterprise Guest Access Requirements.
Enterprise Guest Access Design.
Summary.
12. WLAN Security Configuration Guidelines and Examples.
Cisco Enterprise Class Wireless LAN Products.
Cisco Aironet AP1200 Access Point.
Cisco Aironet AP1100 Access Point.
Cisco Aironet AP350 Access Point.
Cisco Aironet BR350 Bridge.
Cisco Aironet BR1410 Bridge.
Cisco Aironet 802.11b/a/g and Cisco Client Extensions-Enabled Devices.
Cisco Secure Access Server.
Cisco Wireless LAN Solution Engine.
Catalyst 6500 Wireless LAN Services Module.
WLAN Security Methods: Configuration Guidelines and Examples.
Navigating the HTML GUI Configuration Pages.
IOS CLI Configuration Examples and Guidelines.
SWAN Nonswitching Deployment: Configuration Guidelines and Examples.
Basic WDS Configuration.
Fast Secure Roaming (CCKM) Configuration.
RF Aggregation Configuration and Rogue AP Detection.
Local Authentication Configuration (RADIUS Fall-Back Service).
Securing Bridge-to-Bridge Links.
Secure WLAN Management Configuration Guidelines.
SWAN Central Switching Deployment: Configuration Guidelines and Examples.
Summary.
13. WLAN Deployment Examples.
Large Enterprise Deployment Examples.
Large Enterprise WLAN Deployment Example I.
Large Enterprise WLAN Deployment Example II.
Vertical Deployment Examples.
Retail WLAN Deployment Example I.
Retail WLAN Deployment Example II.
University WLAN Deployment Example.
Financial WLAN Deployment Example I.
Financial WLAN Deployment Example II.
Healthcare WLAN Deployment Example I.
Healthcare WLAN Deployment Example II.
Manufacturing WLAN Deployment Example.
Small and Medium Businesses and SOHO WLAN Deployments.
Medium Enterprise WLAN Deployment Scenario Example.
Small Office WLAN Deployment Example.
SOHO WLAN Deployment Scenario Example.
Hotspot (Public WLAN) Deployment Examples.
Coffee Shop WLAN Hotspot Deployment Example.
Airport WLAN Deployment Example.
Summary.
Appendix A. Resources and References.
http://rapidshare.com/files/14502983/cisco.press.cisco.wireless.lan.security.nov.2004.isbn1587051540.chm
No comments:
Post a Comment