Protection for when network users access applications off-site

WPA2-PSK is Not Enough

News Education

WPA2-PSK is Not Enough

In this day and age, employees are accessing their corporate resources wherever they can get a strong wireless signal, whether that’s a public hotspot, the office, or a friend’s apartment. Methods of authentication based on a pre-shared key (PSK) are …

Dinosaurs Among Us: The Archaic Protocol at the Heart of Secure Wireless

Adam Education

Dinosaurs Among Us: The Archaic Protocol at the Heart of Secure Wireless

At SecureW2, we develop a lot of technology for wireless security, more specifically 802.1X. If you’re not familiar 802.1X, it’s the basis of WPA2-Enterprise networks that corporations, colleges, and other large organizations use. And inside the vast majority of these …

Using incorrect certificates on your network

Stop using self-signed certificates for 802.1X

Adam Education, Uncategorized

Stop using self-signed certificates for 802.1X

When setting up 802.1X we often run into questions about using self signed certificates for WPA2-Enterprise server certificate validation.  First, we should clarify the difference between a self-signed certificate and a private Certificate Authority — this is often a point of …

LogJam- Another cryptography bug from the past

News Uncategorized

LogJam- Another cryptography bug from the past

A team of researchers recently discovered a new vulnerability that significantly weakens the encrypted connection between a user and web or email server, potentially putting your secure web information at risk. This latest flaw, named the “LogJam” bug, affects all …

Face-off server certificate validation

802.1X and HTTPS face off when it comes to server certificate validation

Adam Uncategorized

802.1X and HTTPS face off when it comes to server certificate validation

This is part 2 of our series on server certificate validation. In talking with many customers about setting up RADIUS certificates, it is clear many admins have a difficult time describing the server certification validation process to their user base. …

Without server certificate validation, WPA2-Enterprise isn’t secure

Adam Security Threats

Without server certificate validation, WPA2-Enterprise isn’t secure

This article is the first in a series on server certificates. Your users have strong, unique passwords, your networks are protected with WPA2-Enterprise encryption, and you use 802.1x for authentication. WPA2-Enterprise is the gold standard when it comes to security, …