Should the enterprise be concerned with the Apple iPhone's automatic connection to Wi-Fi networks?

Should the enterprise be concerned with the Apple iPhone's automatic connection to Wi-Fi networks?

A number of today's handheld devices and cellular phones, including the Apple iPhone, automatically seek out and connect to Wi-Fi networks. How dangerous is this behavior, and how should enterprises react, especially regarding user-owned devices?

    Requires Free Membership to View

    Login

    SearchSecurity.co.UK members gain immediate and unlimited access to breaking UK industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.co.UK today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.co.uk you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.co.uk is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

I'm not too concerned about this feature being a threat to the enterprise, since well-managed enterprises should have functions in place to prevent unauthorized devices from connecting to the network. The simplest security measure organizations can take is to implement Wi-Fi Protected Access (WPA or WPA2) encryption on the network. The encryption requires users to provide a security key before connecting to the network, preventing unauthorized users from attaching devices to a wireless infrastructure.

More advanced products are available for larger enterprises where key management issues make straight WPA impractical. For example, 802.1x technology allows administrators to require individual user authentication against a centralized authentication service, such as Active Directory. Such a mechanism facilitates the management of authorization privileges. Devices that don't support 802.1x may use "captive portal" mechanisms -- similar to those found in hotels -- to manage authentication through a Web-based interface.

More information:

  • Executive Editor Dennis Fisher explains why users should switch to the more secure Wi-Fi Protected Access 2 (WPA2).
  • Are iPhone security risks any different than those of other mobile devices?

    • This was first published in October 2007

    Back to top