Cornerstone Issue 94: August, 2009
Welcome to Issue 94 of Cornerstone, a subscription-only electronic
newsletter issued periodically by Core Competence.
Cornerstone reports on a wide range of networking topics and
activities involving Core Competence. A brief abstract explains
what you will find if you choose to visit each URL.
http://www.wi-fiplanet.com/reviews/article.php/3835926
Highly-distributed businesses have long faced a choice of evils:
ship skilled staff out to install pricey enterprise APs or let
small branch and home office workers install consumer APs. In
this test drive, Lisa Phifer checks out the benefits and
limitations of Aruba's VBN zero-touch provisioning alternative.
http://www.wi-fiplanet.com/reviews/article.php/3826826
Many 802.11n WLANs fail to achieve maximum potential. Reasons vary,
but one culprit is the drag induced by slower Wi-Fi clients. When we
conducted IxChariot tests, Aerohive's Dynamic Airtime Scheduling
consistently squeezed more juice from faster Wi-Fi downlinks without
penalizing slower clients -- including distant 802.11n clients.
http://www.wi-fiplanet.com/news/article.php/3836181
In this Wi-Fi Planet news coverage, Lisa explores VeriWave WaveAgent
2.0, a test suite enhancement that facilitates in-situ testing of
large, loaded WLANs by sending generated traffic through live clients.
http://searchsecurity.techtarget.com/generic/0,295582,sid14_gci1167653,00.html
TechTarget has now posted a 2009 update to Lisa Phifer's popular
introductory video and tip tutorial series on Wi-Fi Security.
To learn more, visit these installments:
http://www.bitpipe.com/detail/RES/1248108129_707.html
According to a recent study by BT North America, 802.11n migration
is underway at one out of three enterprises, while another 20% plan
to adopt 11n next year. In this E-Guide, sponsored by SonicWALL,
Lisa Phifer explores the associated business benefits, costs, and
potential return on investment.
http://www.bitpipe.com/data/detail?id=1247842860_668u
Many enterprises are moving full-speed ahead on 802.11n using draft
2.0-certified access points. In this podcast, Lisa discusses what
businesses can expect to see in this fall's final 802.11n standard.
http://searchmidmarketsecurity.techtarget.com/tip/0,289483,sid198_gci1362411,00.html
According to F-Secure Corp., 10 thousand smartphones are reported
lost or stolen to the U.K. Metropolitan Police every month. Large
enterprises can afford mobile device managers to enforce passwords
and wipe missing smartphones, but how can smaller employers deal
with risks resulting from theft of these handy little time bombs?
http://searchmidmarketsecurity.techtarget.com/tip/0,289483,sid198_gci1362414,00.html
Unless a lost smartphone or PDA is recovered pronto, remote
mobile device lock should be followed by remote data wipe. In part
2 of this tip, Lisa describes several products and services that
administrators and/or users can use to wipe an AWOL smartphone.
http://securityskeptic.typepad.com
Dave has migrated his blog to take advantage of Typepad.com's richer
feature set. Improved RSS, cleaner navigation, and support for comments
(filtered, anonymous/authored) are among the improvements Dave hopes
you enjoy. If you've bookmarked the old blog you will be redirected
automatically; old "blogtent" remains available through the landing page.
http://preview.tinyurl.com/l9ldgb
Dave reports that SSAC has published a study of high profile incidents
involving attacks against domain name registration accounts. The report
describes how accounts were compromised, the actions attackers performed
once they had gained control of the account, and the consequences.
http://preview.tinyurl.com/qodmw6
Dave comments on an eye-opening blog item by Jeff Jonas on how mobile
providers are collecting - and mining! - geo-spatial data they collect
as you roam. Jeff is an IBM Chief Scientist, Entity Analytic Solutions,
IBM Software Group, with a remarkable insight into data collection,
use, and misuse.
http://preview.tinyurl.com/nku6cw
Mich Kabay has published an update to his 2005 series on Hiring Hackers.
Mich offers an interesting list of precautionary measures employers
should add to their usual hiring scrutiny when considering candidates
who have less than pure white hat track records. Dave observes that while
some organizations may be willing to turn a cheek seven times seven times
seven, this is not universally true. A more interesting question is
whether their colleagues, customers or shareholders will be as charitable
- or entitled to know when an employer hires a hacker.
-----------------------------------------------------------------
Cornerstone is an electronic publication of Core Competence, Inc.
If you do not wish to receive future issues, please reply to this
message or send email to
cornerstone@corecom.com
with the word "remove" in the subject line or message body.
For additional information about Core Competence, visit our web site http://www.corecom.com
To be notified about Lisa Phifer's articles as they are published,
follow her news on Twitter: http://twitter.com/lisaphifer
To receive Dave Piscitello's blog as an RSS feed, subscribe here:
http://securityskeptic.typepad.com
Wi-Fi Planet
Review: Aruba Virtual Branch Network (VBN) RAPs
Wi-Fi Planet, August 24, 2009
Review: Aerohive Dynamic Airtime Scheduling
Wi-Fi Planet, July 6, 2009
VeriWave's WaveAgent Tackles On-site 802.11n Testing
Wi-Fi Planet, August 26, 2009
TechTarget SearchNetworking
Wireless Lunchtime Learning
searchSecurity and searchNetworking, June 2009
Lesson 1: Wi-Fi Threats
Lesson 2: Secure WLANs
Lesson 3: Access Control
Lesson 4: Wireless IPS
The benefits and ROI of integrating 802.11n into your network
SearchNetworking E-Guide, July 2009
Upgrading to full 802.11n
SearchNetworking, July 20, 2009
TechTarget SearchMidmarketSecurity
Dealing with smartphone theft:
Part 1 - Remote device lock and tracking
searchMidmarketSecurity, July 21, 2009
Dealing with smartphone theft:
Part 2 - Remote device wipe on a budget
searchMidmarketSecurity, July 21, 2009
Dave Piscitello's Blog: Security Skeptic
Dave moves to Typepad
August, 2009
Measures to protect domain registration services against misuse
Security Skeptic, August 20, 2009
Every move you make...
Security Skeptic, August 20, 2009
New twist on full disclosure: do you employ hackers?
Security Skeptic, August 21, 2009
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.