SUNIL BERWAL
DEPT:-ECE 3RD YEAR ROLL NO : 6310301
1
-:ACKNOWLEDGEMENT :-
-:CONTENTS:
Introduction Wi-Fi Technologies Wi-Fi Network Elements How a Wi-Fi Network Works Wi-Fi Network Topologies Wi-Fi Configurations Applications of Wi-Fi Wi-Fi Security Advantages/ Disadvantages of Wi-Fi
Introduction
Wireless Technology is an alternative to Wired Technology, which is commonly used, for connecting devices in wireless mode. Wi-Fi (Wireless Fidelity) is a generic term that refers to the IEEE 802.11 communications standard for Wireless Local Area Networks (WLANs). Wi-Fi Network connect computers to each other, to the internet and to the wired network.
4
IEEE 802.11b
Appear in late 1999 Operates at 2.4GHz radio spectrum 11 Mbps (theoretical speed) - within 30 m Range 4-6 Mbps (actual speed) 100 -150 feet range Most popular, Least Expensive Interference from mobile phones and Bluetooth devices which can reduce the transmission speed.
6
IEEE 802.11a
Introduced in 2001 Operates at 5 GHz (less popular) 54 Mbps (theoretical speed) 15-20 Mbps (Actual speed) 50-75 feet range More expensive Not compatible with 802.11b
7
IEEE 802.11g
Introduced in 2003 Combine the feature of both standards (a,b) 100-150 feet range 54 Mbps Speed 2.4 GHz radio frequencies Compatible with b
8
The AP is a wireless LAN transceiver or base station that can connect one or many wireless devices simultaneously to the Internet.
Wi-Fi cards -
They accept the wireless signal and relay information.They can be internal and external.(e.g PCMCIA Card for Laptop and PCI Card for Desktop PC)
Safeguards -
Firewalls and anti-virus software protect networks from uninvited users and keep information secure.
9
Basic concept is same as Walkie talkies. A Wi-Fi hotspot is created by installing an access point to an internet connection. An access point acts as a base station. When Wi-Fi enabled device encounters a hotspot the device can then connect to that network wirelessly. A single access point can support up to 30 users and can function within a range of 100 150 feet indoors and up to 300 feet outdoors. Many access points can be connected to each other via Ethernet cables to create a single large network.
10
AP-based topology (Infrastructure Mode) Peer-to-peer topology (Ad-hoc Mode) Point-to-multipoint bridge topology
11
AP-based topology
The client communicate through Access Point. BSA-RF coverage provided by an AP. ESA-It consists of 2 or more BSA. ESA cell includes 10-15% overlap to allow roaming.
12
Peer-to-peer topology
AP is not required. Client devices within a cell can communicate directly with each other. It is useful for setting up of a wireless network quickly and easily.
13
14
Wi-Fi Configurations
15
Wi-Fi Configurations
16
Wi-Fi Configurations
17
Wi-Fi Applications
Home Small Businesses or SOHO Large Corporations & Campuses Health Care Wireless ISP (WISP) Travellers
18
Wireless technology doesnt remove any old security issues, but introduces new ones
19
Eavesdropping
Easy to perform, almost impossible to detect By default, everything is transmitted in clear text
Usernames, passwords, content ... No security offered by the transmission medium Network sniffers, protocol analysers . . . Password collectors
With the right equipment, its possible to eavesdrop traffic from few kilometers away
20
MITM Attack
1.
2.
3.
Attacker spoofes a disassociate message from the victim The victim starts to look for a new access point, and the attacker advertises his own AP on a different channel, using the real APs MAC address The attacker connects to the real AP using victims MAC address
21
Denial of Service
22
Wi-Fi Security
The requirements for Wi-Fi network security can be broken down into two primary components: Authentication
Privacy
23
Authentication
Data (username & password) send before secure channel established Prone to passive eavesdropping by attacker Establishing a encrypted channel before sending username and password
24
Solution
Authentication (cont..)
Server Authentication
Digital Certificate is used Validation of digital certificate occurs automatically within client software
25
IEEE 802.11i
26
SSID is used to identify an 802.11 network It can be pre-configured or advertised in beacon broadcast It is transmitted in clear text
27
Authenticate each client connected to AP (for WLAN) or switch port (for Ethernet) Authentication is done with the RADIUS server, which tells the access point whether access to controlled ports should be allowed or not
AP forces the user into an unauthorized state user send an EAP start message AP return an EAP message requesting the users identity Identity send by user is then forwared to the authentication server by AP Authentication server authenticate user and return an accept or reject message back to the AP If accept message is return, the AP changes the clients state to authorized and normal traffic flows
28
29
802.11i
Data encryption
Secure fast handoff-This allow roaming between APs without requiring client to fully reauthenticate to every AP. Will require new hardware
30
Advantages
Mobility Ease of Installation Flexibility Cost Reliability Security Use unlicensed part of the radio spectrum Roaming Speed
31
Limitations
32