Auditor Wireless Security

 
WSA automatically audits a wireless network for proper security configuration, to help network administrators close any vulnerabilities before the hackers try to break in.  While there are other 802.11 network analyzers out there (wlandump, ethereal, Sniffer), these tools are aimed at protocol experts who want to capture wireless packets for detailed analysis.  WSA is intended for the more general audience of network installers and administrators, who want a way to easily and quickly verify the security configuration of their networks, without having to understand any of the details of the 802.11 protocols.

What does Wireless Security Auditor Do?
Most importantly, we wanted WSA to be easy to use, and to require absolutely no knowledge of the 802.11 protocols.  WSA is not a packet dump/analyzer; it does all the necessary packet monitoring and analysis, and provides the user with just the answers to the important management questions.  The results are color coded (green is good, red is bad) for rapid and easy understanding. WSA:

  •     Tracks beacon packets to find all access points.
  •     Determines SSID and AP name.
  •     Tracks probe packets, and the probe responses.
  •     Tracks data packets.
  •     Determines: link encryption method.
  •     Tracks authentication packets.
  •     Determines authentication method
  •     Tracks clients
  •     Determines firmware versions by fingerprinting the access point's detailed behavior

Bellow are the Audit consideration:
  • Access Point Mapping
  • SSID Broadcasting
  • SSID Naming Convention
  • Logical Security Architecture
  • Physical Security
  • Radio Frequency Management
  • Default Settings
  • Encryption
  • Authentication
  • Policies and Procedures

A wireless security auditor takes following questions in account:
  • Are you running a wireless network?
  • Do you have a wireless strategy?
  • What steps are you taking to secure your wireless network?
  • Have you changed the vendor default settings?
  • Are you broadcasting the SSID?
  • Is your access point outside of the network in the DMZ?
  • Are your access points in a physical secure location?
  • Are your access points in a location that limits RF leakage?
  • Have you enabled encryption?
  • What method of authentication has been configured?

Article source: http://www.research.ibm.com/gsal/wsa/
Article source: http://www.wmisaca.org/files/20050518-Auditing_Wireless_Networks.pdf