Wireless VPNs: Protecting the Wireless Wanderer

FREE

Become An Insider

Sign up now and get free access to hundreds of Insider articles, guides, reviews, interviews, blogs, and other premium content from the best tech brands on the Internet: CIO, CITEworld, CSO, Computerworld, InfoWorld, ITworld and Network World. Learn more.

Employees sipping café Java over their wireless laptops may think a VPN makes them safe and secure. With careful configuration, there's some chance they're right

Road warriors wirelessly connecting to the corporate network from hot spots at airports or coffee outlets. Just a few years ago, nightmare stories were common of even casual bystanders being able to eavesdrop on corporate communications made in such circumstances. As a result, there's a widespread acceptance that Virtual Private Networks (VPNs) are pretty much de rigueur for wireless use on the road.

But just how much security does a VPN provide? The answer, it seems, is "not as much as you might imagine." "People tend to fixate on the word 'private' in virtual private network,'" warns Jeremy Cioara, an author of five books for Cisco Press and a security instructor for training provider CBT Nuggets, based in Eugene, Ore. "They're sitting in Starbucks working at their laptop, and they think that because they're using a VPN, it's safe. It isn't."

So how should a CISO or CSO go about selecting a VPN that is safe and secure? How should it be configured and managed in order to maintain that security? And to what extent do security provisions in the layers of technology around the VPN impact the overall security of the connection it provides? As growing numbers of remote users communicate with their corporate networks via VPN-over-wireless, such questions are increasingly taking center-stage. The bottom line: It's not so much the VPN itself, but the environment in which it sits that the real vulnerabil- ity lies.

To continue reading, please begin the free registration process or sign in to your Insider account by entering your email address:
Join the discussion
Be the first to comment on this article. Our Commenting Policies