Had a great conversation this morning with NCP’s Rene Poot and Joerg Hirschmann about how to set up a secure wireless LAN. Their stance is that a solid strategy requires layering data encryption with VPN access. Basically, companies need to treat WLAN users less like regular LAN users and more like remote workers. The inclusion of a VPN allows administrators to verify the identity of each machine, and the inclusion of full encryption protects users from being exposed to man-in-the-middle attacks.
Do you agree or disagree with this approach? Are there any additional benefits or drawbacks worth discussing? Is this the framework most companies have in place, or is it more typical that WLAN administrators are exposing themselves to security breaches they haven’t considered? We’ll be incorporating thoughts from this discussion in an upcoming full-length article about the what, whys and hows of WLANs.