October 2010 Archives

The following post is very technical and a departure from most of the conversation here at PrivacyWonk; however, good security and privacy go hand-in-hand.  If you want to protect your home network and ensure the privacy of your communications over a wireless network, this post is for you.  If you're a small business owner who has to comply with Health Insurance Portability Accountability Act (HIPAA), Health Information for Economic and Clinical Health (HITECH) requirements, the newly passed Massachusetts data breach law, or other legislation this post is for you. 

The article will walk you through how to deploy WPA2-Enterprise certificate based, 802.1x, wireless authentication for your home/small business network, specifically using Extensible Authentication Protocol-Transport Layer Security (EAP-TLS).  This is a ridiculous level of security for your home WiFi but it will help thwart a would-be attacker by making the time-investment to crack your network greater than their mortal lifetime.  You should all know by now: WEP protection is a joke; it can be cracked in 60 seconds. WPA Pre-Shared Keys (PSK) are breakable by brute force and depend largely on the strength of the key. Brute forcing keys has been becoming increasingly easier for those with access to Rainbow tables or Rainbow table services, reducing the work factor significantly.

This article provides a step-by-step guide on how to configure, install, and deploy this insane level of security within your home/small business.

Please leave questions, comments, or concerns in the comments section or drop me an e-mail.  Enjoy.