Network security is only as good as its weakest link – often users’ home Wi-Fi networks. IT managers must examine their exposure to unsecured Wi-Fi networks and take steps to mitigate any risks, such as helping users protect their networks, implementing a good remote access policy, and addressing any compliance issues.

——————————————————————————————————————-

In his Time.com article, “Confessions of a Wi-Fi Thief,” Lev Grossman describes a Wi-Fi filching scenario IT pros are all too familiar with.

Grossman wrote:

“When I moved into my apartment three years ago, the first thing I did after I tipped the movers was sit down on a box, crack open my laptop and sniff the air for wi-fi signals. And I found them: my apartment was chock-full of delicious, invisible data, ripe for the plucking. For the next three years I didn’t pay for Internet access, I got online via the unsecured wireless networks of my neighbours.”

I’ll leave the ethical and philosophical argument for and against Wi-Fi theft for another post, but Grossman’s article reminds us that the chains we put around our networks are only as strong as their weakest links – often our end-user’s home offices.

Using VPN’s, strong access controls and authentication procedures are a must, but IT departments must also stress the importance of end-users securing their own wireless networks and we should provide assistance, even if it’s just informational, if possible.

Now don’t get all up in arms about supporting end-users home equipment. I’m not suggesting you take on the impossible task of manually configuring each user’s home networking equipment, heaven forbid, instead, an information campaign that helps users understand the importance of and common methods for securing their home networks should suffice.

Establish, distribute and enforce a good remote access policy.

Information should start with a good remote access policy, which every remote user should of received and signed (manually or electronically). If you haven’t got a Remote Access Policy then create one for your organization today.

Provide information on general Wi-Fi security techniques

Whether you include them as part of your remote access policy, post them on your IT department’s Intranet site or send them out in an e-mail, the following Wi-Fi security tips are a good place for your users to start securing their home networks:

* Use WPA or WPA2 wireless encryption – not WEP.
* Don’t broadcast your SSID.
* Use a firewall.
* Use a strong passphrase.
* Regularly monitor network access.

If these simple precautions are taken by your remote workers you will be going a long way to ensure the weakest link in your Wi-Fi network is not a well meaning employee who wanted to do some extra work from the comfort of his or her own home.