[wsfii-discuss] Fwd: [india-gii] poor WiFi encryption a security risk

• Previous message: [wsfii-discuss] Google Broadband
• Next message: [wsfii-discuss] Fwd: [india-gii] poor WiFi encryption a security risk
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi

As many of you might be aware , in the recent few months wi-fi (specifically
open and / or unsecure wifi networks) have got a lot of bad press
becausesuch networks were used by terrorists to send emails before bomb
blasts (in delhi / bangalore / ahmedadbad) So would be interested to hear
what folks have to say.

am not an expert on w-ifi security but am wondering how difficult (and non
traceable) would it be for a determined person using software that is
readily available to take the next step i.e. break into a "secure" wi-fi
network by listening in, capturing and analyszing  wi-fi data packets (which
include login usernames and passwords) .

ram

---------- Forwarded message ----------
From: Arun Mehta <arun.mehta at gmail.com>
Date: Wed, Sep 17, 2008 at 12:08 PM
Subject: [india-gii] poor WiFi encryption a security risk
To: india-gii at lists.cpsr.org


should we, in our note, also point out that encrypting your WiFi
communication is illegal unless you give government your key? Any down
sides to making this argument?

Do our experts agree that 3g encryption levels, unlike gsm, are
acceptable, http://www.comp.brad.ac.uk/het-net/tutorials/P10.pdf ?

Arun

http://www.telecomtiger.com/fullstory.aspx?passfrom=breakingnews&storyid=3886

Wi-Fi services under scanner again as Militants again use Wi-Fi spot
to send email
TT Correspondent |  New Delhi |  14 Sep 2008

The Wi-Fi services in the country are certain to face tough times
ahead. First it was the Bangalore and Ahmedabad blasts where it was
found out that militants had claimed responsibility for the blasts
using an unsecured Wi-Fi connection of an American executive.

 Yesterday's Delhi blasts reveal that the same concept was used this
time as well. The Indian Mujahideen claimed responsibility for the
blasts using through an email sent through a unsecured Wi-Fi
connection of Ms Kamran Power Private Limited in Chembur, Mumbai.

These incidences have put a question mark on the security features of
Wi-Fi services.

While malls, commercial premises as well as Coffee shops are
increasingly offering these services, the same is being done with
little care for security aspects feel experts.

The scenario is only set to become more complex after entry of
wireless broadband services through WiMAX and data services through
3G, say observers.

While internet cafes have been brought under the purview of law
(atleast on papers) with identity cards and other details must before
using the service,  Wi-Fi services have come in handy for the
militants who now need to identify only an unsecured Wi-Fi connection
to send their message across to agencies without the fear of getting
traced.
____________________________________________________________
You received this message as a subscriber on the list:
    india-gii at lists.cpsr.org
To be removed from the list, send any message to:
    india-gii-unsubscribe at lists.cpsr.org

For all list information and functions, see:
    http://lists.cpsr.org/lists/info/india-gii
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.okfn.org/pipermail/wsfii-discuss/attachments/20080918/b3c47912/attachment.html>

• Previous message: [wsfii-discuss] Google Broadband
• Next message: [wsfii-discuss] Fwd: [india-gii] poor WiFi encryption a security risk
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]