Reading my two previous columns, you learned how to set up a secure wireless (Wi-Fi) network at your home or place of business. You also learned how dangerous it can be to use free, “open,” unsecured wireless networks, such as those found at restaurants, schools and hotels.
In short, if you are using a free or “open” Wi-Fi network, one that does not require a password or “key,” then you are using an unencrypted, insecure network. Such networks should be treated as hostile and dangerous. Without the proper measures in place, unsecured networks should not be used for anything other than casual website surfing. They should not be used for any activity that involves usernames and passwords, such as email, banking, bill-paying, eBay-buying or Facebooking.
What if you are on the road, though, and have no choice but to use unsecured networks, yet, you still need to do things that involve passwords? What do you do then? What are the proper measures that would make you safe?
Some computer security wonks say all you have to do to be safe on unsecured networks is to disable file sharing, observe the “s+lock” rule, use a service like OpenDNS, or use SSL with email programs like Outlook. These are all good ideas, and things you should be doing, anyway, even on secured wireless networks. For example, if you have file sharing enabled, everyone on the network can read files on your computers, not just people you trust.
However, these things won’t protect you against the biggest Wi-Fi danger of them all: the nefarious “man-in-the-middle attack.” If you don’t know what that means, read last week’s column.
My research has convinced me that the only way to be truly safe on an open wireless network is by using a very powerful tool known as VPN, which stands for “Virtual Private Network.” If you use free, unsecured, open wireless networks, I urge you to setup a VPN.
Think of a VPN as a hidden tunnel leading from your house to the grocery store. Nobody can see what happens inside the tunnel. Nobody can see if you are coming or going, driving a car or riding a bicycle, and no one can understand what you are saying. Everything you do between your house and the store is hidden from view.
VPNs have been used for years between businesses and in-the-field employees, providing a safe way for workers to connect to the home office. They are highly secure, but difficult to configure, putting them out of reach for most computer users that don’t have their own personal I.T. department. Fortunately, there are some services available that can do all of the heavy VPN-lifting for you, and some of them are free.
This week, I am testing two free VPN services: HotSpot Shield and SecurityKISS. Next week, in “To Wi-Fi, or not to Wi-Fi, Part 4,” the results of my testing. Wi-Fi security on unsecured networks is coming your way!