Cisco Wireless LAN Security [Hardcover]

Krishna Sankar (Author), Sri Sundaralingam (Author), Darrin Miller (Author)

Book Description

ISBN-10: 1587051540 | ISBN-13: 978-1587051548 | Publication Date: November 25, 2004 | Edition: 1

Expert guidance for securing your 802.11 networks

• Learn best practices for securely managing, operating, and scaling WLANs
• Comprehend the security-related technological underpinnings of WLANs
• Explore new security protocols in 802.11i and WPA and learn how they prevent attacks
• Review centralized deployment models for wired/wireless integration
• Deepen your knowledge of defense by understanding the tools that attackers use to perform reconnaissance and to attack authentication and encryption mechanisms
• Understand how to design secure WLANs to support enterprise applications with the new standards and practices detailed in this book
• Reference the next generation authentication standards and protocols
• Find out about mobility, hotspots, and campus wireless networks
• Grasp Open Authentication, MAC-based authentication, shared key authentication, EAP authentication protocols, WEP, WPA, and 802.11i

Cisco Wireless LAN Security is an in-depth guide to wireless LAN technology and security, introducing the key aspects of 802.11 security by illustrating major wireless LAN (WLAN) standards that can protect the entire network. Because a WLAN is less effective as an isolated piece of the network, this book emphasizes how to effectively integrate WLAN devices into the wired network while maintaining maximum security.

Cisco Wireless LAN Security covers the spectrum of WLAN security, including protocols and specifications, vulnerabilities and threats, and, especially, deployment patterns and design guidelines. With a unique combination of theory and practice, this book addresses fundamental wireless concepts, such as WEP, and innovations, such as EAP, switching, and management. Each chapter includes detailed illustrations, checklists, design templates, and other resources. You will also find generic wireless deployment patterns based on real-world customer installations and functional examples of architecture, design, and best practices.

Whether you currently design, configure, implement, and maintain WLANs or simply want to explore wireless security issues, Cisco Wireless LAN Security has everything you need to understand how to create a seamlessly secure, impenetrable 802.11 network.

This book is part of the Networking Technology Series from Cisco Press¿ which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

Editorial Reviews

About the Author

Krishna Sankar is a distinguished engineer at Cisco Systems, Inc. For the past 20 years, he has held positions in software architecture and development and industrial engineering. Krishna is an author, speaker, and technology evangelist.

Sri Sundaralingam is a technical marketing manager in the Wireless Networking Business Unit at Cisco Systems. Sri has extensive customer contact and is responsible for developing and marketing enterprise and carrier networking solutions using the Cisco Aironet Series of wireless LAN products.

Andrew Balinsky is a network security test engineer at Cisco Systems. His introduction to computer security was through the Air Force Information Warfare Center, where he did everything from tracking hackers to developing security software.

Darrin Miller currently works as a security researcher at Cisco Systems. He has been in the networking industry for more than 15 years and has authored several white papers on network security.

Product Details

• Hardcover: 456 pages
• Publisher: Cisco Press; 1 edition (November 25, 2004)
• Language: English
• ISBN-10: 1587051540
• ISBN-13: 978-1587051548
• Product Dimensions: 9.3 x 7.5 x 1.2 inches
• Shipping Weight: 2.2 pounds (View shipping rates and policies)
• Average Customer Review: 4.9 out of 5 stars  See all reviews (7 customer reviews)
• Amazon Best Sellers Rank: #853,437 in Books (See Top 100 in Books)

Customer Reviews

Most Helpful Customer Reviews

4 of 4 people found the following review helpful:

5.0 out of 5 stars Excellent Resource for Any WLAN Administrators, June 19, 2006

By 

Tony Bradley "s3kur3" (Houston, TX) - See all my reviews
(VINE VOICE)   

This review is from: Cisco Wireless LAN Security (Hardcover)

The four authors of Cisco Wireless LAN Security do an excellent job of striking a balance between writing concise enough that the book is not overwhelming, but detailed enough for the reader to truly understand the subject matter. Not an easy task.

The book is titled Cisco Wireless LAN Security, which might actually make some people shy away from it, but the Cisco part is a bit of a misnomer. Some of the information and examples are Cisco-centric, but the majority of the information in the book is vendor-neutral and should be understood and applied on just about any wireless network.

The beginning chapters provide an excellent framework for those new to wireless LAN technology, but it quickly moves beyond that to much deeper and more complex subjects within wireless LAN security.

The discussion of wireless vulnerabilities and on wireless security techniques helps you gain an understanding that you can take away from the book and apply to your unique situation. The configuration samples and examples throughout the book are excellent.

I don't recommend that someone new to wireless networks pick this up, but anyone tasked with protecting or securing a wireless LAN should definitely use this book as a resource.

4 of 4 people found the following review helpful:

5.0 out of 5 stars Good treatment of the topic on Wireless LAN Security, July 20, 2005

By 

Trevor Chandler "Trevor" (Houston, TX USA) - See all my reviews

This review is from: Cisco Wireless LAN Security (Hardcover)

The title is definitely in alignment with the content. A basic-to-intermediate discussion of security, as it applies to wireless LANs, is presented in this book. When I completed the book, I certainly had a much better understanding of wireless LAN security fundamentals - both generically and with a Cisco slant. The book has contributions from 4 persons, which may explain the healthy perspective given to the subject of wireless LAN security.

I know the number of chapters of a book can't always tell much of the story, but in the case of the 13 chapters contained in this book - spread out over almost 400 pages - I immediately felt that no single chapter would contain an amount of information that may be overwhelming as far as being able to retain my focus. The 2 final chapters comprised the greatest number of pages for any single chapter, and rightfully so. It would have been a compromise of the completion of the overall material to have limited the number of pages involving configuration examples and deployment scenarios.

I really appreciated chapter 2. This chapter was titled "Basic Security Mechanics and Mechanisms", and the content was just as the title suggested. The subject matter discussed security without any connection to wireless LANs. With "Security" being a complete topic all by itself, it was beneficial to have a little introduction to some generic security fundamentals before blending this topic with wireless networking. If the subject of computer/network security is not your forte, then you'll be served well with this brief exposure.

Chapters 3 and 4 were a welcomed addition because they provided a "warm-up" to wireless networking. The authors, in my opinion, did a very good job in not assuming that the reader would be a seasoned veteran of wireless networking. With chapters 2, 3 and 4 leading the way, the groundwork was set for a solid comprehension for the remainder of the book.

So, it is in chapter 5 -- "WLAN Basic Authentication and Privacy Methods" -- where the discussion of security for wireless LANs really begins. Once again, the title of the chapter is in sync with the content. What's provided is some light exposure to security methods. The information in the previous chapters really help to digest this chapter's material. This chapter is one of the "key" chapters in the book's presentation of wireless LAN security; the foundation to the discussion of wireless LAN security begins here.

The remaining chapters up to chapter 11 contained more in-depth discussion of security in the wireless LAN. I was pleased to see a discussion on the Wireless Domain Services (WDS), Wireless LAN Solution Engine, and Cisco Structured Wireless Aware Network (SWAN). While there's plenty of information at Cisco's website regarding these mechanisms, including the information in the context of the book content enhanced my understanding.

I don't believe this is a book that is intended to prepare for any Cisco-related certification; not that that was suggested anywhere to begin with. However, the reason for my comment is because there are none of the traditional questions at the end of each chapter to test chapter comprehension. So, if you want to test your understanding or memory, you'll have to create your own questions as your read through each chapter.

There will be a number of terms that may be unfamiliar to some readers, so I'll encourage you to note those as you read each chapter. The book contains no glossary for you to reference terms -- all nice and neat, in alphabetical order.

The book is for someone with at least a Cisco Certified Network Administrator (CCCNA)-level of knowledge. Certainly if the reader has a fair understanding of wireless networking, the focus can be exclusively placed on wireless LAN security. I would not recommend this book as a first-read to someone who doesn't have an understanding of wireless networking -- unless they're going to read only chapters 3 and 4. Again, chapters 3 and 4 are very good for a first exposure to wireless LAN theory.

Using a rating scale of 1 to 5 (with 1 being the worst, and 5 being the best) I'd give the book a rating of 5. Even with the fast evolution of wireless networking technology, and wireless standards being in almost a constant state of flux, I can see how I'd still be able to refer to this book for many months to come.

2 of 2 people found the following review helpful:

4.0 out of 5 stars how to bolt down your wireless LAN, May 29, 2006

By 

W Boudville (Terra, Sol 3) - See all my reviews
(VINE VOICE)    (TOP 1000 REVIEWER)    (HALL OF FAME REVIEWER)    (REAL NAME)   

This review is from: Cisco Wireless LAN Security (Hardcover)

The title explicitly says Cisco, and indeed there is a lot of material enclosed that is specific to how Cisco implements its wireless routers. But you could plausibly also use this book as a good guideline to general purpose wireless security.

The authors have gone to some length to explain the general principles of 802.11*. In and of itself, this will be useful to some readers, for 802.11 is now a huge set of complex standards. With the official documentation being quite turgid prose, though necessary of course. For clarity, this book is a good and far more understandable alternative.

The text also goes into associated topics, like the encryption protocols associated with 802.11. Plus, and this is important, it describes third party, often open source, tools that can be used to sniff for insecure networks. Tools like Kismet or Wellenreiter, where the latter is meant for wardriving. One of the first things you should do is download and use one of these tools [or even several of them] against your wireless net, if it is already running. Better that you discover any weaknesses in it, than others do so.