Skip Navigation  |  
    
0
ANU Home | Helpdesk | Staff | Students | Information Services | Library |
The Australian National University
Networks & Communications
Division of Information
About DOI
InfoArticles
Quick Help
Information Services@ANU
NetComms
Netcomms Home
About Netcomms
Report a Fault
Contact Us
Network
Charges & Statistics
ICN Infrastructure
DNS
Wireless
ANUTV
Telephones
Telephones Home
Telephone Directory
Directory Help
Mobile Phones
SoftPhones/Skype
External Directories
Telstra - White Pages
Telstra - Yellow Pages
Printer Friendly Version of this Document

NetComms > Wireless > Security Recommendations

Security Recommendations


The security recommendations are slightly different depending on which wireless service you are connecting to.

Be aware that, in general terms, wireless networks are less secure than wired networks since the electrical signal is not confined to a wire. This can increase the potential for your traffic to be intercepted or 'snooped'.


Common Recommendations


  • Enable your operating system's firewall or, if one is not included, install one
  • Install Anti-Virus software such as Sophos and keep it up-to-date
  • Keep your operating system up-to-date with vendor-provided patches, such as those supplied by Windows Update. Set your OS to automatically patch as they are released
  • Be wary of running programs or files downloaded from untrusted sources - these can contain invisible programs called trojan horses or viruses.
  • Use common sense when reading unsolicited mail (spam) and do not click on hyperlinks contained in such emails
  • Use a browser that includes a phishing filter.

Recommendations for ANU-Access and ResNet


ANU-Access is an open, unencrypted wireless network. As a result the Access Policy is quite restrictive, however you should still observe the following precautions when using ANU-Access:

  • If you meet the requirements, migrate to ANU-Secure
  • Staff members with an ANU VPN connection are encouraged to use it at all times when using ANU-Access
  • Avoid sending personal data, such as passwords or financial information, over unencrypted connections. Examples of unencrypted connections are HTTP, POP and IMAP. Examples of encrypted connections are HTTPS, POPS, IMAPS and SSH (your login to ANU-Access is encrypted)
  • Configure email clients to use the secure versions of IMAP and POP, IMAPS and POPS. The ANU mail servers support SSL encryption for outgoing (SMTP) email. It is recommended that you configure your email client to use this mode. Unencrypted mail may be intercepted and read by any determined individual with a wireless connection.

ResNet uses basic WEP encyption. WEP is no longer considered secure by experts - it will not defeat a determined hacker - however it does provide rudimentary encryption and protection from those who have not discovered the WEP key. The recommendations for ResNet are the same as for ANU-Access.


Recommendations for ANU-Secure and EduRoam


ANU-Secure and EduRoam use advanced WPA2/AES encryption. This is considered cryptographically secure by experts. This dramatically reduces the risk of traffic being intercepted and decrypted and so called man-in-the-middle attacks. However it does NOT reduce the risk of certain kinds of attacks, such as phishing, viruses or trojan horses. In addition, WPA only provides encryption over the wireless part of the journey. Once the traffic reaches the wired part of the network, unencrypted applications will again be unencrypted.

  • Observe all the precautions above when accessing untrusted networks
  • Continue to be wary of sending personal data over unenencrypted applications, particularly to off-campus destinations
Page last updated: 13 February 2009
Please direct all enquiries to: Contact Email
Page authorised by: manager.netcomms@anu.edu.au
The Australian National University — CRICOS Provider Number 00120C