Google Answers Logo
View Question
 
Q: WiFi Security? ( No Answer,   2 Comments )
Question  
Subject: WiFi Security?
Category: Computers > Security
Asked by: cosmiccowboy-ga
List Price: $50.00		 Posted: 07 Sep 2004 22:28 PDT
Expires: 11 Sep 2004 22:02 PDT
Question ID: 398233 
I need a definitive answer, documented with authoritative sources, to
the question of whether an open WiFi connection, such as one might
find at Starbuck's, is in ANY way secure, particularly when SSL is
implemented, and if it is not secure, can it be made secure and how?

for reference, and for understanding my confusion, please see:

http://hardware.mcse.ms/message64903.html

and the final section (entitled "Security in Public Spaces") located at:

http://www.wi-fi.org/OpenSection/secure.asp?TID=2#public

thanks!
Answer  
There is no answer at this time.

Comments  
Subject: Re: WiFi Security?
From: rontec-ga on 07 Sep 2004 23:17 PDT		  
Yes, it is very secure.
With a secure WiFi connection, you would have two layers on security,
SSL on top of WiFI security. With an open WiFi connection, you have
only one layer of security, SSL, but that is more than enough.

Say you are taking to a friend in a language only you and him
understand and NO ONE else does. Even if someone taps your phone line,
it does not matter, because they still don't understand the language.

The only problem, just like with the telephone example, the bad guy
knows whom you are talking to and how long, but not what you are
saying.

I?ll leave it to the researchers to provide some references.
Subject: Re: WiFi Security?
From: ldavinci-ga on 08 Sep 2004 11:18 PDT		  
Hi cosmiccowboy-ga,

   SSL by itself is secure, so it should be good enough for the access using
any hotspots even without inherent security.  This assumes your browser is not
compromised, your pc/notebook free of any hidden worms/malware, your os patched
for any known security vulnerabilities, you also have a good antivirus and
intrusion detection software, you have not enabled services that are insecure
and are using highly recommended security settings for the internet, your
connection is established through a non-spoofed domain name server, your ssl
session is not hijacked/redirected, the hotspot does not run on an insecure pc
or accesspoint(with no posibility of someone changing the network settings)
and also have an additional firewall to protect the connected hosts, does not
have insecure caching/proxy servers, does not employ a transparent proxy server.

Although the possibilities of an SSL compromise is very low, it cannot be
ruled out!.

Regards
ldavinci-ga
Important Disclaimer: Answers and comments provided on Google Answers are general information, and are not intended to substitute for informed professional medical, psychiatric, psychological, tax, legal, investment, accounting, or other professional advice. Google does not endorse, and expressly disclaims liability for any product, manufacturer, distributor, service or service provider mentioned or any opinion expressed in answers or comments. Please read carefully the Google Answers Terms of Service.

If you feel that you have found inappropriate content, please let us know by emailing us at answers-support@google.com with the question ID listed above. Thank you.
Search Google Answers for
Google Answers  

Google Home - Answers FAQ - Terms of Service - Privacy Policy