Recently, I’ve noticed a trend with the people I’ve been speaking to about wireless networks.  Some organizations feel that because the have deployed PEAP and TKIP or CCMP for encryption, that they are “all set” with wireless security, having mitigated the risks about wireless networking.

Sadly, this is not the case.  While deploying strong authentication and encryption options are a great first step for securing wireless networks, it isn’t the only thing that must be done to mitigate wireless security threats.

I wrote a paper for the SANS Technology Institute recently titled “Five Wireless Threats You May Not Know”.  It is fairly high-level, but hopefully it will prove to be interesting reading to folks.  As always, comments are most welcome.  Thanks!  -Josh