Broadcom simplifies Wi-Fi security set-up

Full WPA cover in two steps

  • alert
  • submit to reddit

Intelligent flash storage arrays

Wi-Fi chip maker Broadcom today unveiled software that it says will make setting up secure WLANs significantly easier.

The software, dubbed SecureEZsetup, provides a simple two-step set-up wizard that configures both the access point and the PC client using the Wi-Fi Protected Access (WPA) TKIP security system.

Users setting up a WLAN for the first time are asked to provide the answers to two "easy-to-remember" questions. These answers are used to create the appropriate authentication and data encryption keys, plus the access point's unique SSID, details of which are provided to the user.

If more PC clients are added to the WLAN at a later date, the software asks for that information before configuring the client-side settings.

In order to ensure that the correct access point is configured, the wizard will only talk to access points that have been operational for less than an hour.

"We assume the user has taken the equipment straight out of the box and plugged it in," Gordon Lindsay, Broadcom European product line manager, told The Register.

He acknowledged that there was an inherent security flaw in the system - the initial wireless link between the client and the access point is by necessity unprotected - but he said Broadcom had minimised the risk of interception. "After each communication between client and access point, the two are disassociated," he said. In short, the two talk to each other literally as briefly as possible until they can re-associate permanently over a secure connection.

The system requires both access point and client adaptor contain one of Broadcom's 54g-branded 802.11g chipsets. Lindsay expects devices to ship with the software from mid-May onwards. Older kit will require a firmware update, which Broadcom has made available to its customers.

Broadcom supplies 802.11g chipsets to Linksys, Buffalo, Belkin, Motorola, Apple, Acer, Dell, HP, Gateway and others, and through its product partners claims a 77 per cent share of the US 802.11g retail market.

Since January, the Wi-Fi Alliance, the standard's interoperability and marketing body, has insisted that all WPA-certified devices ship with full security settings in place. In the past, vendors turned security off by default because of the difficulty many users had in setting up secure networks. This, in turn, helped Wi-Fi develop a reputation for being easy to penetrate. WPA certainly improves WLAN security over the older, weaker Wired Equivalent Privacy (WEP) spec, but even WPA is useless if it's not enabled. ®

Related stories

Wi-Fi Alliance preps WPA 2 security spec
Snag in next-gen Wi-Fi security unearthed
Cisco thwarts WLAN dictionary attack
Cisco Wi-Fi kit in minor security flap
Chip start-up boosts Wi-Fi rate by '10-20 times'
Atheros updates Wi-Fi speed booster tech

Internet Security Threat Report 2014

More from The Register

next story
Broadband sellers in the UK are UP TO no good, says Which?
Speedy network claims only apply to 10% of customers
YOU are the threat: True confessions of real-life sysadmins
Who will save the systems from the men and women who save the systems from you?
Virgin Media struck dumb by NATIONWIDE packet loss balls-up
Turning it off and on again fixes glitch 12 HOURS LATER
Facebook, working on Facebook at Work, works on Facebook. At Work
You don't want your cat or drunk pics at the office
Soz, web devs: Google snatches its Wallet off the table
Killing off web service in 3 months... but app-happy bonkers are fine
prev story


Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Simplify SSL certificate management across the enterprise
Simple steps to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.