Security is a vital concern when establishing a home wireless network. This may seem like a big “DUH” to most of us, but, hey, there’s always that ten percent who just don’t get it. Some people actually connect to their neighbors’ networks instead of their own, and then wonder why “their” signal is not as strong as they’d hoped, or why there are unfamiliar names in their “My Network Places”.

Think of all the personal data stored on your computer. Quicken financial files with credit card, social security, and password data enclosed. Simple text files with lists of your online banking passwords. Personal email. Basically, running an unsecured wireless network is akin to placing your personal data file cabinet out on the curb in front of your house.

So, what can you do to secure your stuff? Although there are several ways to go about it, your basic goal is to create a virtually locked door into your network house that only people you invite in have the key to. It’s the techno-equivalent of that scene in the movies where the guy knocks on the door of the club, a narrow door slides open revealing the eyes of the doorman, passwords are exchanged, and the guy is allowed to enter. See? And you thought this was going to be hard.

The first step recommended by security experts is to change the default settings on your router. Every manufacturer ships their routers with a default username, password, and SSID (System Set Identifier, used to identify the wireless network, like “Linksys”, for example). You should change the username, password, and SSID to whatever you please, as long as it’s not the default settings. This is done via whatever control interface your router uses – either dedicated software, or by inputting the router’s IP address into a web browser. Although this is a good start, a serious hacker will have no trouble getting into your system if this is your only protection.

So, the next step is to set up a WEP (Wireless Encryption Protocol) key between the router and the computers on the network. The key is actually a string of hexadecimal characters (0-9 and A-F), which must be entered into the router software. WEP encrypts and de-encrypts the data that passes between the elements of the network, and the key router and computers. Although WEP is widely used, anyone with enough time and the right software can eventually get into a WEP-protected network. However, WEP will certainly deter the more “casual” hacker, or drive-by laptopper looking for free broadband access.

In response to WEP’s weaknesses, a new standard has emerged, called WPA (and WPA2), or WiFi Protected Access. As I can feel your “geek-meter” starting to peg, I’ll just say that WPA does what WEP does, only faster, better, and smarter. If your computers and router support it, use it. Note that, at the radio wave level, these protocols do use some bandwidth. But you’ll never notice it.

Another layer of protection uses your computer’s MAC (Media Access Control) address. The MAC address is a unique identifier attached to most forms of networking equipment, and looks something like “00:0a:95:d1:5s:30”. And, no, that’s not my MAC address, so you hackers “fuggetaboudit”. Simply put, you can set up the network so that only computers and wireless cards with recognized MAC addresses can come in and play.

This all sounds complicated, but the bottom line is to have all the computers you want to be able to use the network “on the same page”.

Next time we’ll get into where to place the hardware in your home to maximize reception and minimize frustration.

© 2005 Peter F. Zimowski