Thaiio.com

Networking professionals are encouraging people to think
twice about wireless network security. You might be
thinking I use WEP-128 bit encryption with MAC address
filtering, I’m safe. Or you may be you’ve never even heard
of WEP, if this is the case you might want to unplug your
wireless access point immediately. But then again look at
the bright side at least you don’t have the false sense of
security that your network is secure. Perhaps you are the
smart guy who knows how insecure wireless networks are. You
too are at just an equal risk!

Your computer consultant might be partially right when they
say WEP will protect your network. It will protect your
network from casual snooping but that is about it. Last
year the FBI was able to crack a WEP protected network in
less than 3 minutes with tools widely available on the
internet. Since then it’s been downhill for WEP.

At this point you might be thinking, “Oh well, someone gets
on my network and uses the internet”. This is completely
false. If someone has gone through the process of getting
on your network chances are the only thing they want is not
internet access. Any computer security professional will
tell you that physical access to the network is 95% of the
security battle. Once this has been accomplished you can
consider all of your data compromised. Customer invoices,
customer data, credit card numbers and passwords to
financial institutions will all be in the hands of a hacker.

One in many methods can be used to gain access to your
personal data, whether it’s through Key loggers, Trojans, or
just by sniffing your plaintext network traffic.

Maybe, just maybe, I have not convinced you of the
insecurities of wireless networks. Let me tell you about
another attack that hackers can use to gain access to your
network. Let’s say your access points are completely locked
down, to your knowledge. A user from your network goes and
flips on their laptop while sitting in an airport terminal
waiting for a plane. They see an available insecure
wireless network so they click on it and connect. None of us
have ever done this before right, itching to check their
email one last time before heading out of town? Unbeknownst
to them they have just clicked on a fake honeypot wireless
network, set up by a rogue hacker that before they can even
realize their machine is already being scanned. Picture for
a moment that user could be anywhere, even sitting at a desk
in your network. Just as long as the rogue access point is
stronger than your AP’s radio signal you’re security is
done.

May be you fall into the category of never setting up
wireless networks because you read about their insecurities.

How then can you be at risk? Just consider for a moment
that a user in your organization fires up his wireless card.

See’s a wireless network that is named XYZCorp after your
company. So they connect to it and immediately a script is
hammering their machine for security vulnerabilities. Once
again they connected to a rogue access point setup by a
hacker. Now you might be thinking. “C’mon you must have to
be a computer genius to find and run these tools.” Think
again, thanks to the kind people over at remote-exploit.org
all these tools can be downloaded in one big happy ISO file.

Burned to a CD as an image and bang you’re done, ready to
take a drive to the nearest business and start sniffing
credit card numbers. Everything wrapped into a nice package
just waiting for the next script kiddy to start running the
programs. You may be thinking ok this is a major problem so
what should I do? Give up my organizations ability to use
wireless networks? This isn’t exactly what we are saying.
A newer wireless security technology has taken over in 2004
called WPA. It is more secure than WEP. And so far tools
are not as readily available to hack your network. But
consider the following. WEP was ratified in the late 1990’s
less than six years later it was exploited. This is typical
of almost every computer technology. It is only a matter of
time before technologies are exploited. Just always
remember Security is a multi-tiered companywide
responsibility. From providing physical security to web
site security all matters should be considered serious and
not taken lightly. So before you grab a wireless access
point and slap it in your network, I urge you to think
twice.

You may think you are in a sinking boat because you are a
small organization not able to implement the latest
technologies and afford the newest access points. Or maybe
you cannot afford to pay an IT staff over 100k-200k a year
to maintain your medium size network. Executives at
N2
Network Solutions say you should consider IT outsourcing or
IT consulting. You can get Industry certified engineers on
a project by project basis. Contractual relationships are
also available to dump the responsibility of your network
into their hands for a fraction of the price. To keep your
small to medium size network performing like a Fortune 500
machine invest the capital and secure your assets.

Jeremy Whittaker is a Senior Consultant for N2 Network Solutions, a leader in Phoenix IT Outsourcing, providing computer services and Phoenix IT Consulting.

Tags: plc
pac
pc
port
vb
vc
c#
parallel
serial
com
usb

Share This

The USB standard has become the universal means of connection peripheral devices and equipment to the computer. Computers have either two or four USB port connectors. Each of these can support a large number of connections but to be able to attach more than two or four devices requires a multi-connection hub. There are many different types of hubs and this article seeks to explain some of the important considerations in selecting the best choice of hub for your system.

The USB bus system in computers was introduced in 1996 and has gone through a number of developments and enhancements. It started out as USB 1 which was very slow and had many bugs. Version 1.1 brought a higher bandwidth of 12 MBits/second. The latest version of 2.0 gives a bandwidth of 480MBits/second and is fully backward compatible with USB 1 and 1.1.
Link to a table showing differences between USB speeds (http://www.usb-products.com/usb-speed.aspx)

Port Connections and Power
All USB standards support up to 127 connections (or devices) per computer port. It is unlikely that this would be achievable as the port can only supply 0.5 Amps maximum. Some devices consume a full 0.5 Amps, so are powered from a power adaptor from the mains supply.

Bandwidth Sharing
Generally, the bandwidth of the port (http://www.usb-products.com/usb-port.aspx) is shared between all the devices that are attached through a hub. This means that if you want to add two USB 2 devices with a USB 1.1 device, the bandwidth is shared between all three devices. However, there is an extra complication. Most hubs (http://www.usb-products.com/usb-hub.aspx) have a single chip controlling the bus. This means that the hub will work at the lowest bandwidth determined by the connected devices resulting in the USB 2 devices working at much lower transfer speeds. Nearly all USB hubs on the market today (passive and powered) operate like this.

Multiple Chip Hubs
The transaction translator (TT) is the name for the controlling chip that assigns bandwidth to each connected device. In hubs that have one TT all devices share the same bandwidth and operate at the speed of the slowest. In hubs with a TT per socket, each receives a share of the bandwidth, but this is not restricted to the slowest device.
Examples of this type of hub is the Belkin Tetra hub (http://www.usb-products.com/Products/Hi-Speed-USB-2-0-4-Port-TetraHub.aspx) This has 4 ports each with its own TT.

What this means in reality is that a multiple TT hub will provide much higher bandwidth per port when several devices are connected from one hub.

Maximum Performance and choice of Where to connect a device
If you are after maximum performance for each of your USB 2 devices, each device should be plugged into its own USB port in the computer. Additional plug in cards can provide a vast number of USB ports for most needs. However, this situation might be going too far except for the most demanding of situations. Although several USB devices might be connected at the same time it is unlikely that they will all be in use together.

A useful compromise is to plug small bandwidth devices together into a single hub. These would include: mice; keyboard; Speakers; little used devices.

For devices that require a high bandwidth and are used often, direct connection in to a USB port is the best option. Devices would include: Flash memory drives; external disks; Web cams; Other frequently used devices.

If you don’t have sufficient ports then either more ports should be added with a plug-in card or a good quality hub with multiple transaction translators should be used. The devices placed on the hub are those that are used less often. Those devices placed directly on the port are used most often.

Link to a selection flow chart that helps in selecting a hub (http://www.usb-products.com/USB-Hub-Selection.aspx)

Access Considerations
What type of configuration and mix of port and hubs will depend on the number of devices that you wish to attach. Desktop computer cases usually have ports in the front of the case for easy access. These can be used for devices that are often plugged / unplugged and require the highest bandwidth. These are flash memory drives and portable external drives and MP3 players.

USB hubs tend to clutter up the area with cable connections and power lead. These naturally go out of sight if possible or behind the monitor. For mobile computers, a small compact hub can be obtained. These may have there own wind-in or tidy away cables.

Powered and Passive Hubs
Hubs may be restricted in their use without a power connection as passive hubs rely on the power of the USB bus. Powered hubs have a mains power adaptor to provide additional power for devices. These devices range in the power they require. It is possible to run a number of different devices all from a single passive hub running of a USB port as long as they have low power requirements. With only 0.5 Amps current it only takes one of the devices requiring the full power requirement for the hub to be overwhelmed. Nothing serious is going to happen though except that the single will degrade and many or all the devices will loose connection with the computer. To avoid this situation a powered hub should be used.

Nigel Stephens heads an online business at http://www.usb-products.com supplying computer hardware products. Nigel’s emphasis is in providing useful information so that consumers can make more informed choices.

Tags: plc
pac
pc
port
vb
vc
c#
parallel
serial
com
usb

Share This