New to wireless security in Wireless Security http://www.dslreports.com/forum/r23258536 en Wed, 10 Feb 2010 05:17:38 EDT Wed, 10 Feb 2010 05:17:38 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23268506 Kojak1958 :
said by jbibe See Profile :

said by Kojak1958 See Profile :

I gather from reading, the SSID characters are randomly injected into the network authentication key. Thus, logically a long SSID increases the difficulty of cracking the N.A.K.
The SSID is appended to the end of the passphrase. The result is then hashed 4096 times to produce the desired 256-bit PSK (Pre-Shared Key). Since the SSID is known, or can be easily recovered, a long SSID does not add any strength. Select a unique SSID that you can easily remember. The strength of the PSK depends on the unknown passphrase. As a minimum, select passphrase with 30 random, printable, ASCII characters. Better yet, select a passphrase with 63 random ASCII characters, as suggested by SoonerAL.
Thanks. My current passphrase is 63 random Alpha-numeric characters.]]> http://www.dslreports.com/forum/remark,23268506 Fri, 30 Oct 2009 20:32:35 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23267987 jbibe :
said by Kojak1958 See Profile :

I gather from reading, the SSID characters are randomly injected into the network authentication key. Thus, logically a long SSID increases the difficulty of cracking the N.A.K.
The SSID is appended to the end of the passphrase. The result is then hashed 4096 times to produce the desired 256-bit PSK (Pre-Shared Key). Since the SSID is known, or can be easily recovered, a long SSID does not add any strength. Select a unique SSID that you can easily remember. The strength of the PSK depends on the unknown passphrase. As a minimum, select passphrase with 30 random, printable, ASCII characters. Better yet, select a passphrase with 63 random ASCII characters, as suggested by SoonerAL.]]> http://www.dslreports.com/forum/remark,23267987 Fri, 30 Oct 2009 18:25:55 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23265405 Kojak1958 :
said by SoonerAl See Profile :

Here are some threads that talk a bit about a long SSID, hash values, etc.

»WPA

»How to make sure my wireless point not to be hacked?

Personally I configured my wireless network with a short SSID, ie. 5 characters, a long 63-character random ASCII key and use WPA2-PSK [AES] and sleep well at night.
I gather from reading, the SSID characters are randomly injected into the network authentication key. Thus, logically a long SSID increases the difficulty of cracking the N.A.K.]]> http://www.dslreports.com/forum/remark,23265405 Fri, 30 Oct 2009 10:27:27 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23265245 Kojak1958 : I reiterated my remaining question without refreshing the page.

Hence the noted editing. Thanks for your help.]]> http://www.dslreports.com/forum/remark,23265245 Fri, 30 Oct 2009 09:57:50 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23264737 SoonerAl : Here are some threads that talk a bit about a long SSID, hash values, etc.

»WPA

»How to make sure my wireless point not to be hacked?

Personally I configured my wireless network with a short SSID, ie. 5 characters, a long 63-character random ASCII key and use WPA2-PSK [AES] and sleep well at night.
--
"When all else fails, read the instructions..."
MS-MVP Windows Desktop Experience]]> http://www.dslreports.com/forum/remark,23264737 Fri, 30 Oct 2009 06:55:23 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23260549 Kojak1958 :
said by SoonerAl See Profile :

I would not bother with disabling the SSID broadcast. You can cause connectivity issues with your clients and its simply not a valid security measure. Otherwise except for a long SSID, I use a simple and short unique SSID, that is how I protect my home wireless network.

»Wireless Networking Forum FAQ »What happens when I disable SSID Broadcast? Am I more secure?

»technet.microsoft.com/en-us/libr···942.aspx

»theillustratednetwork.mvps.org/L···ity.html
Thanks for the information. My network is a home/private network. I've re-enabled SSID broadcast. I left the long string of characters for my SSID. As opposed to a short SSID, when hashed with the 63 character key, it's my understanding this will improve the security of my network. Yes ?

P.S.

I installed/ran inSSIDer. Marvelous tool ! Everyone within range (including myself were on Ch. 6 . I moved to a different channel.
When setting up my wireless connection, I selected WPA2-PSK.
inSSIDer says I'm using WPA2-CCMP. What's up with that ?

P.P.S.

Re: WPA2-CCMP, I got my answer here:

»www.intel.com/support/wireless/w···5806.htm

»en.wikipedia.org/wiki/CCMP]]> http://www.dslreports.com/forum/remark,23260549 Thu, 29 Oct 2009 13:05:01 EDT Re: New to wireless security http://www.dslreports.com/forum/remark,23258821 SoonerAl : I would not bother with disabling the SSID broadcast. You can cause connectivity issues with your clients and its simply not a valid security measure. Otherwise except for a long SSID, I use a simple and short unique SSID, that is how I protect my home wireless network.

»Wireless Networking Forum FAQ »What happens when I disable SSID Broadcast? Am I more secure?

»technet.microsoft.com/en-us/libr···942.aspx

»theillustratednetwork.mvps.org/L···ity.html
--
"When all else fails, read the instructions..."
MS-MVP Windows Desktop Experience]]> http://www.dslreports.com/forum/remark,23258821 Thu, 29 Oct 2009 07:21:54 EDT New to wireless security http://www.dslreports.com/forum/remark,23258536 Kojak1958 : Greetings,

I think I've got all the bases covered.

I'm currently employing WPA2-PSK network authentication
and AES data encryption.

My SSID Broadcast is disabled. My SSID consists
of a 29 character mix of numbers and letters
(no dictionary terms).

My network key consists of a 63 character mix
of letters and numbers (no dictionary terms).

What do you guys think ?]]> http://www.dslreports.com/forum/remark,23258536 Thu, 29 Oct 2009 02:39:57 EDT