The problem with NSA’s public wireless guidance

The problem with NSA’s public wireless guidance

The NSA guidance acknowledges the inherent insecurity risks of Wi-Fi communications. However, it shifts responsibility to end-users and their behavior. To begin with, relying entirely on the user to ensure security is akin to ‘create a stronger password’ guidance which we all know has proven to fail and until this day has created one of the largest security challenges in an attempt to rectify. Moreover, some of the guidelines might achieve an adverse result – for example, disabling auto-connect increases the risk of connecting to a rogue access point due to human error. Other guidelines may create a false sense of security, such as the preference of “encrypted public networks” over “open public networks” – which are essentially equivalent from a security perspective.

Undoubtedly, the NSA has taken a step in the right direction to bring awareness and promote security. Yet, the approach of “educating the user” can only be applied successfully to select individuals. It  cannot be applied effectively to a large number of end-users and devices – which is what happens in an enterprise environment. Enough that we look at a guideline like “make sure you choose to forget a public network after you use it” to get the sense that this is not a behavior expected to be widely adopted (that said, I am in favor of having this as a feature pushed by device vendors).

The reality is that no amount of verbal or written guidelines will prevent successful attacks over the airspace. Instead, agencies, contractors, and enterprises need to acknowledge that their airspace is being used for cyber attacks. Enterprise devices – with wireless capabilities – connected to sensitive networks are inherently exposed to attacks launched from compromised devices on external networks (aka Antenna for Hire). This is regardless of whether they choose to connect to public Wi-Fi networks or not. While user behavior does affect the ability of organizations to secure their networks, the only way to ensure consistent security is by applying the right protection technology. In that respect, organizations must start applying monitoring and protection technologies to their network airspace.

31 thoughts on “The problem with NSA’s public wireless guidance

  1. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Red-cellantigens

  2. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Theacademicdev

  3. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Thecropscience

  4. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks ~ WPVM Radio

  5. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Thefresh-life

  6. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Theagrodevelopment

  7. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Theafricandiplomacy

  8. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Technologyevo

  9. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Entomologyscience

  10. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Banking Tech

  11. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Climate Disaster

  12. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Professional Cycle

  13. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Mortgage Right

  14. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The College Save

  15. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Smart Money

  16. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Budgets Fix

  17. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Farmpolicies

  18. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Worldfared

  19. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Remote Bank

  20. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Finance Aid

  21. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The Economic Aid

  22. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Theagronomous

  23. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - The World Explore

  24. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Microcephalydisease

  25. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - e-invest

  26. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Thefiscalcrisis

  27. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Acquaponicfood

  28. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - Thefinancecharge

  29. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks - MCB

  30. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks – Political Investing Report

  31. Pingback: Beware Free Wi-Fi: Government Urges Workers to Avoid Public Networks – Red Patriot News

Comments are closed.