|
|
Programming Help |
Homework Help |
Counseling Astrology Advice | Tarot Advice | Parenting Dating Advice | Love Advice | Divorce Advice Legal Advice | Debt Advice | Career Advice W IRELESS N ETWORK S ECURITY 3-42 Checklist Security Recommendation Best Practice Should Consider Status 42. Ensure that management traffic destined for APs is on a dedicated wired subnet. ! 43. Use SNMPv3 and/or SSL/TLS for Web-based management of APs. ! Operational Recommendations 44. Configure SNMP settings on APs for least privilege (i.e., read only). Disable SNMP if it is not used. SNMPv1 and SNMPv2 are not recommended. ! 45. Enhance AP management traffic security by using SNMPv3 or equivalent cryptographically protected protocol. ! 46. Use a local serial port interface for AP configuration to minimize the exposure of sensitive management information. ! 47. Consider other forms of authentication for the wireless network such as RADIUS and Kerberos. ! 48. Deploy intrusion detection agents on the wireless part of the network to detect suspicious behavior or unauthorized access and activity. ! 49. Deploy auditing technology to analyze the records produced by RADIUS for suspicious activity. ! 50. Deploy an 802.11 security product that offers other security features such as enhanced cryptographic protection or user authorization features. ! 51. Enable utilization of key-mapping keys (802.1X) rather than default keys so that sessions use distinct WEP keys. ! 52. Fully understand the impacts of deploying any security feature or product prior to deployment. ! 53. Designate an individual to track the progress of 802.11 security products and standards (IETF, IEEE, etc.) and the threats and vulnerabilities with the technology. ! 54. Wait until future releases of 802.11 WLAN technologies incorporate fixes to the security features or provide enhanced security features. ! 55. When disposing access points that will no longer be used by the agency, clear access point configuration to prevent disclosure of network configuration, keys, passwords, etc. ! 56. If the access point supports logging, turn it on and review the logs on a regular basis. ! 3.9 Wireless LAN Risk and Security Summary Table 3-4 lists security recommendations for 802.11 wireless LANs. For each recommendation, narrative is provided that addresses the security need, requirements or justification for that rcommendation. |
Find more freelance jobs
|
