TH9 Securing the Back Door: Preventing Attacks from Employee Home Wireless Networks

March 17th, 2011

11:00 AM - 12:15 PM

Level: Intermediate

Mike Danseglio

Principal Technologist

Next Direction Technologies

Wireless home networks are prevalent today and their use is expanding. Fixed Mobile Convergence (FMC) is extending functionality with things like femtocell and ZigBee, and new technologies appear nearly every day. As these expand, and more companies go global, the use of corporate resources on home networks becomes simpler and more common. But there’s a dark side too! The result of these factors is that corporate assets are exposed to attack through home networks. Because home networks are by definition not in the workplace, they are nearly impossible to manage. Join Mike Danseglio, CISSP, former security authority at Microsoft and world-renowned security expert, to explore the wireless home technologies in place today.

In this session, Mike dissects several wireless networks piece by piece, showing how they work, how they implement security, and where they expose security vulnerabilities. Mike also explains the relative vulnerabilities of each - for example, a relatively obvious flaw in a signaling technique that is readily exploitable, but only with expensive custom radio equipment. Mike also shows how to mitigate a number of commonplace attacks and how to anticipate, and protect against, the next generation of wireless security vulnerabilities. Throughout the session he remains focused on the fact that home wireless networks are largely unmanaged and unregulated by corporate security policy. The calls to action aren't just fanciful theory - they're practical, based on extensive experience in the field.