BUILDING SECURE WIRELESS NETWORKS
(SyScan_08_02)

Wireless LANs are now widely deployed and have often introduced an explosion of security issues and unique vulnerabilities. Despite nowadays state of the art in terms of wireless security, it still appears a lot of available Wi-Fi networks not being properly secured. Destined to both network administrators and auditors, this training will bring them up to date with state of the art Wi-Fi security technologies, providing detailed background and practical hands-on exercises. At the end of this course, they will be able to integrate secure wireless environments in their existing infrastructure, assess and maintain their security level.
Prerequisites:

   * Ethernet and TCP/IP knowledge, and experience
   * 802.11 experience is a plus

Prerequisite material:

This training features practical exercices that need specific prerequisites. In order to get the most out of them, students will need a laptop running Backtrack v2 Stable Release live CDROM[1] properly[2] with an injection capable wireless adapter[3] (Atheros based adapter strongly advised).

  [1] http://www.remote-exploit.org/backtrack.html
  [2]http://backtrack.offensive-security.com/index.php?title=HCL:Laptops
  [3]http://backtrack.offensive-security.com/index.php?title=HCL:Wireless

Class Outline:
* Quick Wi-Fi basics wrap-up
* Wi-Fi networks security assessment
    * Wi-Fi security consideration through examples
          * Wi-Fi networks enumeration technics and tools
          * Wi-Fi weaknesses
               * Intrinsic weaknesses
               * Bypassing basic security features
               * WEP flaws and cracking technics
          * Applied malicious traffic injection
          * Wi-Fi stations exposure
    * Wireless networks assessment methodology
          * From discovery to security evaluation
* Building secure Wi-Fi networks
    * Wi-Fi security features
          * 802.1x authentication
          * Wi-Fi Protected Access
          * IEEE 802.11i/WPA2
          * Wi-Fi Protected Setup
    * Integrating Wi-Fi within existing infrastructures
          * Possible interactions
          * Use cases study
          * Roadmap and key points

Cédric has been working for 7 years in network security field, performing audits and penetration tests. In 2004, he joined EADS Innovation Works and now runs the Computer Security Research Lab in Suresnes, France. His research focuses on network security, wireless links and protocols security, Wi-Fi in particular. He is an active member of Rstack team and French Honeynet Project with studies on honeynet containment, honeypot farms and network traffic analysis. He had delivered technical presentations and trainings worldwide, written papers and articles on network security and wrote Wi-Fi traffic injection tool Wifitap.