Interviews

Safe public Wi-Fi

by Mark Rowe

As an internet-reliant society, we depend on finding network connections whilst we are on the move. The majority of us connect to public Wi-Fi when we are outside of the home or office environment. A large number of public Wi-Fi points, however, remain unencrypted, and this creates opportunities for cybercriminals to gain access to our personal information, writes Dirk Gates, pictured, the founder of the cloud and network management product company, Xirrus.

Recognising these threats, Xirrus recently conducted a survey of executives and IT professionals to discover how and where people connect to public Wi-Fi, and most importantly understand their perception of public Wi-Fi security.

The survey found that 91 percent of Wi-Fi users do not believe public Wi-Fi is secure, yet a startling 89 percent of Wi-Fi users choose to use it regularly anyway. Some 48 percent of Wi-Fi users connect to public Wi-Fi at least three times per week and 31 percent connect every day. These findings indicate that the need to connect to the Internet supersedes any potential security implications. Business users in particular rely on Internet connectivity to operate remotely. But criminal gangs can use these unencrypted networks to access information ranging from confidential company data to our personal finances.

Ubiquitous use of public Wi-Fi means putting both applications and data at risk wherever we go. To break it down, 83 per cent of those surveyed connect to Wi-Fi at hotels, 72 percent connect at coffee shops and restaurants, 64 percent connect at airports, 48 percent connect in co-working spaces and 41 percent connect convention centers. Using public Wi-Fi makes you susceptible to hacking because the network is easily available to anyone with malicious intent. Every user on public Wi-Fi uses the same encryption key, and this opens their device up to intrusion. Ideally every user would use a unique encryption key, but this makes networks complex and more difficult to manage.

While the network’s administrators hold some responsibility for Wi-Fi security, it is also the user’s duty to ensure they are taking steps to protect their data. Fortunately there are several ways to ensure connecting to public Wi-Fi is a safe and secure experience. Here are six best practices both business and personal users can follow when connecting to public Wi-Fi networks:

1. Use a Virtual Private Network (VPN)

A VPN establishes an encrypted pathway, enabling secure access without exposing data to the rest of the network. However, a VPN requires a dedicated program on to encrypt a connection from end-to-end. While this can be time-consuming, it is one of the most effective methods of increasing personal security while using a public network and should be carried out each and every time a public network is accessed.

2. Use two-factor authentication

Two-factor authentication provides a two-step process to identify a genuine user logging into an account. Many companies are adopting this security measure as it is simple yet very secure, but most consumer platforms also offer this as a security feature. It combines security controls from the system with a knowledge factor provided by the user – for example a code sent to a verified mobile phone number or email address. When this is enabled on an account, a stolen a password will not be enough to gain access.

3. Remember to forget

Once users have finished using a public network, they should get into the habit of deleting the network’s SSID profile. If not, the device will automatically connect to that network whenever it is in range, even if the user has not specifically requested access.

4. Verify the network

Before going online users should verify that the network is the provider’s official system, rather than assuming the strongest signal is coming from the trusted network. Asking for the correct SSID prevents man-in-the-middle attacks.

5. Avoid logging in

When using public Wi-Fi, users should avoid using websites that require login credentials. This may, however, be unavoidable, and in these situations it is best to use websites supporting the HTTPS protocol. This encrypts communications between the website and browser.

6. Train your staff

Nearly half of Wi-Fi users say their company has not offered cyber security training in the past year. Businesses need to provide training opportunities and encourage a security culture within their organisation. Giving employees the necessary tools to avoid attack will minimise the security risks of using public Wi-Fi.

People are relying on wireless technology for an increasing number of services, and many are turning to public Wi-Fi networks to work and connect on the go. Unfortunately this means that the threat of hacking will only continue to increase. Following security best practices allows users to take their personal Wi-Fi network with them, enabling secure access to business and personal data whilst still offering the convenience of public Wi-Fi networks.

Related News

Newsletter

Subscribe to our weekly newsletter to stay on top of security news and events.

© 2024 Professional Security Magazine. All rights reserved.

Website by MSEC Marketing