Wireless Security
PCI DSS: Wireless scanning to look for rogue APs Oct 13 2009 11:06AM
Taras (taras securityaudit ru)
Hello, all!

We have PCI DSS Requirement:
"11.1 Test for the presence of wireless access points by using a wireless
analyzer at least quarterly or deploying a wireless IDS/IPS to
identify all wireless devices in use."

Ok, we can do this going through all CDEs and scan the air with e.g. Kismet.
Then we can make wireless APs/Clients table and and classify them as
rogues or just friendly neighboring
wireless devices.
But how can we determine if this rogue AP and especially rogue wireless
clients (WLAN card into a back office server)
are inside CDE? By signal level? But Kismet shows this information only
for APs (not for clients) :(


[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus