1 / 137

Wireless (Security) Self-Test for fun

Unclassified. Wireless (Security) Self-Test for fun. Presented by: J.D. Fulp , CISSP-ISSEP jdfulp@nps.edu Senior Lecturer of Computer Science Naval Postgraduate School (NPS) Monterey, CA USA. Late Addition to the Workshop!. Hey... I just want to attend and listen/learn!.

triage
Download Presentation

Wireless (Security) Self-Test for fun

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Unclassified Wireless (Security) Self-Test for fun Presented by: J.D. Fulp, CISSP-ISSEP jdfulp@nps.edu Senior Lecturer of Computer Science Naval Postgraduate School (NPS) Monterey, CA USA MWC Q&A Session

  2. Late Addition to the Workshop! • Hey... I just want to attend and listen/learn! MWC Q&A Session

  3. Late Addition to the Workshop! • Hey... I just want to attend and listen/learn! • Idea: Review a few related docs in order to be a more “sophisticated” listener/attendee MWC Q&A Session

  4. Late Addition to the Workshop! • Hey... I just want to attend and listen/learn! • Idea: Review a few related docs in order to be a more “sophisticated” listener/attendee • New Idea (thanks John!): Present on what you found in these docs MWC Q&A Session

  5. Late Addition to the Workshop! • Hey... I just want to attend and listen/learn! • Idea: Review a few related docs in order to be a more “sophisticated” listener/attendee • New Idea (thanks John!): Present on what you found in these docs • Modification to the New Idea: The docs mostly read with the excitement of an encyclopedia, and are likely known by these “select” attendees, so... MWC Q&A Session

  6. Late Addition to the Workshop! • Hey... I just want to attend and listen/learn! • Idea: Review a few related docs in order to be a more “sophisticated” listener/attendee • New Idea (thanks John!): Present on what you found in these docs • Modification to the New Idea: The docs mostly read with the excitement of an encyclopedia, and are likely known by these “select” attendees, so... • Present in a Q&A form to assess knowledge and perhaps “incite” discussion MWC Q&A Session

  7. Which “related docs” ? • DoDD 8100.2 • Use of Commercial Wireless Devices, Services, and Technologies in the Department of Defense (DoD) Global Information Grid (GIG) • NIST SP800-124 • Guidelines on Cell Phone and PDA Security • DISA STIG • Wireless Overview • DISA STIG • Mobile and Wireless Device Addendum to the Wireless STIG MWC Q&A Session

  8. What KIND of Questions? • Miscellaneous Wireless Terms/Technology • Security: Threats • Security: Vulnerabilities • Security: Security_Controls • Security: Policy • Security: Best Practices • Security: Technology • By the way... don’t expect any special “ordering” of any of this! MWC Q&A Session

  9. Misc Wireless Terms/Technology • What does WiFi stand for? MWC Q&A Session

  10. Misc Wireless Terms/Technology • What does WiFi stand for? Wireless Fidelity MWC Q&A Session

  11. Misc Wireless Terms/Technology • Which term applies to Bluetooth? • WMAN • WGAN • WPAN • WLAN MWC Q&A Session

  12. Misc Wireless Terms/Technology • Which term applies to Bluetooth? • WMAN • WGAN • WPAN • WLAN MWC Q&A Session

  13. Misc Wireless Terms/Technology • Which operates at 5GHz? • 802.11a • 802.11b • 802.11g • 802.11n MWC Q&A Session

  14. Misc Wireless Terms/Technology • Which operates at 5GHz? • 802.11a • 802.11b • 802.11g • 802.11n MWC Q&A Session

  15. Misc Wireless Terms/Technology • What is IEEE 802.16 ? • WiMAX • ZigBee • EDGE • Bluetooth MWC Q&A Session

  16. Misc Wireless Terms/Technology • What is IEEE 802.16 ? • WiMAX • ZigBee • EDGE • Bluetooth MWC Q&A Session

  17. Misc Wireless Terms/Technology • Who uses CDMA based cell tech.? • Verizon • AT&T MWC Q&A Session

  18. Misc Wireless Terms/Technology • Who uses CDMA based cell tech.? • Verizon • AT&T MWC Q&A Session

  19. Misc Wireless Terms/Technology • Which is the shortest range RF tech? • 802.11 • Vicinity RFID (smart card/chip) • WiMAX • Proximity RFID (smart card/chip) MWC Q&A Session

  20. Misc Wireless Terms/Technology • Which is the shortest range RF tech? • 802.11 • Vicinity RFID (smart card/chip) • WiMAX • Proximity RFID (smart card/chip) MWC Q&A Session

  21. Misc Wireless Terms/Technology • The two main 802.11 “modes” are Ad Hoc mode and... MWC Q&A Session

  22. Misc Wireless Terms/Technology • The two main 802.11 “modes” are Ad Hoc mode and... Infrastructure mode MWC Q&A Session

  23. Misc Wireless Terms/Technology • The “Evil Twin” threat is aka... • A promiscuous eavesdropper • An RF-jammer box • “War-driving” setup • a rogue wireless access point MWC Q&A Session

  24. Misc Wireless Terms/Technology • The “Evil Twin” threat is aka... • A promiscuous eavesdropper • An RF-jammer box • “War-driving” setup • a rogue wireless access point MWC Q&A Session

  25. Misc Wireless Terms/Technology • Which is THE DoD IA Directive? • 8200.1 • 8500.1 • 8510.01 • 5200.40 MWC Q&A Session

  26. Misc Wireless Terms/Technology • Which is THE DoD IA Directive? • 8200.1 • 8500.1 • 8510.01 • 5200.40 MWC Q&A Session

  27. Misc Wireless Terms/Technology • Which is the correct ordering for typical operating range? • IrDA—Bluetooth—802.11—WiMax--GSM • 802.11—IrDA—GSM—Bluetooth—WiMAX • Bluetooth—802.11—IrDA—WiMAX—GSM • GSM—IrDA—Bluetooth—802.11--WiMAX MWC Q&A Session

  28. Misc Wireless Terms/Technology • Which is the correct ordering for typical operating range? • IrDA—Bluetooth—802.11—WiMax--GSM • 802.11—IrDA—GSM—Bluetooth—WiMAX • Bluetooth—802.11—IrDA—WiMAX—GSM • GSM—IrDA—Bluetooth—802.11--WiMAX MWC Q&A Session

  29. Misc Wireless Terms/Technology • Most Cell phones operate in the... • HF range (3-30MHz) • HF and VHF range (3-300MHz) • UHF range (300MHz-3GHz) • SHF range (3-30GHz) MWC Q&A Session

  30. Misc Wireless Terms/Technology • Most Cell phones operate in the... • HF range (3-30MHz) • HF and VHF range (3-300MHz) • UHF range (300MHz-3GHz) • SHF range (3-30GHz) MWC Q&A Session

  31. Misc Wireless Terms/Technology • Which is the closest to typical longest operating range of WiMAX? • 1 mile • 5 miles • 30 miles • 100 miles MWC Q&A Session

  32. Misc Wireless Terms/Technology • Which is the closest to typical longest operating range of WiMAX? • 1 mile • 5 miles • 30 miles • 100 miles MWC Q&A Session

  33. Misc Wireless Terms/Technology • Which is the closest to typical longest operating range of Bluetooth? • 1 meter • 10 meters • 100 meters • 1 mile MWC Q&A Session

  34. Misc Wireless Terms/Technology • Which is the closest to typical longest operating range of Bluetooth? • 1 meter • 10 meters (most often seen/quoted) • 100 meters (mentioned in Wireless STIG) • 1 mile MWC Q&A Session

  35. 8100.2 • What’s a PIM, PED, PDA? MWC Q&A Session

  36. 8100.2 • What’s a PIM, PED, PDA? Personal Information Mgr Personal Electronic Device Personal Digital Assistant MWC Q&A Session

  37. 8100.2 • Which does 8100.2 apply to? • Receive-only pagers • GPS receivers • Implanted medical devices • RF energy between RFID tags Section 2.5 MWC Q&A Session

  38. 8100.2 • Which does 8100.2 apply to? None of these Section 2.5 MWC Q&A Session

  39. 8100.2 • Exceptions/deviations from required security controls usually (always?) require the approval of the DAA. What is a DAA? Section 4.1.2 MWC Q&A Session

  40. 8100.2 • Exceptions/deviations from required security controls usually (always?) require the approval of the DAA. What is a DAA? Designated Approving Authority Section 4.1.2 MWC Q&A Session

  41. 8100.2 • Which pub is heavily referenced for security issues related to crypto-graphic module validation? • FIPS 199 • DCID 6/9 • FIPS 140-2 • NSTISSI 4009 MWC Q&A Session

  42. 8100.2 • Which pub is heavily referenced for security issues related to crypto-graphic module validation? • FIPS 199 • DCID 6/9 • FIPS 140-2 • NSTISSI 4009 MWC Q&A Session

  43. 8100.2 • Measures taken to mitigate DoS attacks should address? • Only external threats • Only internal threats • Potential “friendly interference” • All of the above Section 4.1.4 MWC Q&A Session

  44. 8100.2 • Measures taken to mitigate DoS attacks should address? • Only external threats • Only internal threats • Potential “friendly interference” • All of the above Section 4.1.4 MWC Q&A Session

  45. 8100.2 • The term (title) CTTA pops up often when discussing wireless emissions and security. What is CTTA? • Certified TEMPEST Technical Authority • Communications TecSec Tech. Auth. • Counter-technical Transmission Analyst • Consolidated TEMPEST Testing Agency Section 4.3 MWC Q&A Session

  46. 8100.2 • The term (title) CTTA pops up often when discussing wireless emissions and security. What is CTTA? • Certified TEMPEST Technical Authority • Communications TecSec Tech. Auth. • Counter-technical Transmission Analyst • Consolidated TEMPEST Testing Agency Section 4.3 MWC Q&A Session

  47. 8100.2 • What is the DITSCAP? Section 4.5 MWC Q&A Session

  48. 8100.2 • What is the DITSCAP? DoD Information Technology Security Certification and Accreditation Process Section 4.5 MWC Q&A Session

  49. 8100.2 • (T/F) DoD component must actively screen for wireless devices [including] active e-m sensing at the premises to detect/prevent unauthor-ized access of DoD ISs... to ensure compliance with DITSCAP ongoing accreditation. Section 4.5 MWC Q&A Session

  50. 8100.2 • (T/F) DoD component must actively screen for wireless devices [including] active e-m sensing at the premises to detect/prevent unauthor-ized access of DoD ISs... to ensure compliance with DITSCAP ongoing accreditation. Section 4.5 MWC Q&A Session

More Related