{"id":5754,"date":"2007-08-06T09:27:24","date_gmt":"2007-08-06T09:27:24","guid":{"rendered":"http:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/e-commerce\/wifi-not-secure-clarified.html"},"modified":"2007-08-06T09:27:24","modified_gmt":"2007-08-06T09:27:24","slug":"wifi-not-secure-clarified","status":"publish","type":"post","link":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/technology\/wifi-not-secure-clarified.html","title":{"rendered":"WiFi not Secure \u2013 Clarified"},"content":{"rendered":"<div style=\"MARGIN: 0in 0in 0pt\">I just received this e-mail from Francois Doremieux, Senior Program Manager, Product Group: Customer Experience in response&nbsp; to my <a href=\"http:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wireless\/wifi-is-not-secure.html\">WiFi is Insecure<\/a> post from last week. I thought it worth sharing.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&#8212;-<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Hello Rich<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\"><\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">It was a pleasure meeting you in Redmond last month.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">I just read your &quot;WiFi is not secure&quot; article and I wanted to add a brief comment.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">As we <a href=\"http:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/microsoft\/microsoft-pushes-into-communications-and-beyond.html\">discussed<\/a> in Redmond, the notion of security and quality at the network layer is only one way to look at it. I agree that it&rsquo;s possible to snoop and intercept the packets over WiFi. Therefore, one cannot trust the network layer alone for security (as we had discussed in Redmond that it is not possible to trust the network layer alone for management of quality). That is why the approach we have taken with Microsoft UC is to provide security at the application layer, with strong authentication, non repudiation, signaling and media encryption (in the same way we did it for quality with the adaptive media stack).<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Transport is a very important element of the stack, but it can&rsquo;t solve all issues (and its solutions tend to not have the flexibility software brings to the application layer). Applications such as <a href=\"http:\/\/blog.tmcnet.com\/blog\/tom-keating\/microsoft\/microsoft-office-communications-server-2007.asp\">OCS<\/a> can overcome the transport flaws and provide software based security and quality, in conjunction with or even as a substitute to the network depending on the specific circumstances.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Best regards<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Francois<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&#8212;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Thank you Francois for the e-mail as your letter helps clarify <a href=\"http:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wireless\/wifi-is-not-secure.html\">this entry<\/a>. The problem I referred to is with Web 2.0 applications, especially those where the Session ID and cookies are hijacked and cloned. As you mention, applications such as OCS and others with strong encryption can (thankfully) overcome transport flaws.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">The point is when you are in an area where you are using WiFi, your packets can be hijacked and used to recreate your account. This is especially the case with Web 2.0 applications which loosely refers to hosted software as well.<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">&nbsp;<\/div>\n<div style=\"MARGIN: 0in 0in 0pt\">Use of products like Citrix, Remote Desktop and OCS should significantly minimize if not eliminate the risk of identity hijacking.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>I just received this e-mail from Francois Doremieux, Senior Program Manager, Product Group: Customer Experience in response&nbsp; to my WiFi is Insecure post from last week. I thought it worth sharing. &nbsp; &#8212;- &nbsp; Hello Rich It was a pleasure meeting you in Redmond last month. &nbsp; I just read your &quot;WiFi is not secure&quot;<\/p>\n","protected":false},"author":44,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[171,172,163,199,188,156,189,118,177,191],"tags":[],"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/5754"}],"collection":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/comments?post=5754"}],"version-history":[{"count":0,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/5754\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/media?parent=5754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/categories?post=5754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/tags?post=5754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}