The Security status of various WiFi hotspots for usage by humans or things (IoT Devices) are listed below:
Name
|
WiFi Security
|
Encryption
|
Authentication
|
VPN
usage
|
Emergency
|
None
|
None
|
None
|
Advisable
|
Free WiFi
|
None
|
None
|
SMS OTP
|
Advisable
|
High Speed WiFi
|
None
|
None
|
Voucher
|
Advisable
|
| IoT related | WPA2 | AES (128 bit) | Passkey | Not required |
The Access Point data communications security is same as that you get in Public Wifi, except for IOT related SSIDs. Therefore in most cases the well known Public Wifi constraints and known recommendations/countermeasures (like use of VPN applications to encrypt your traffic if you are concerned about privacy) apply. The WPA2 passwords wherever used are published to the community or group
of the users through out-of-band mechanisms like email groups, whatsapp
groups, etc. You are requested strictly to NOT SHARE these outside the
group
"WiFi Security" primarily is responsible for encrypting your traffic. This is common in home wifi where their is little use-case to identify individual devices or users (the owner of the Broadband connection is the default user). This means that their is no authentication or your identity check. But in enterprise/carrier environment, their is a requirement for you to identify yourself before being granted access to the network.
Emergency is the most insecure, slowest and its strongly recommended to not use it at all, unless life and limb is in danger and their is no time/information-handy to enter passwords or authenticate yourself (for eg., no cellular signal to receive SMS OTP). Repeat and constant daily users of Emergency may be blocked. In particular logging into websites, sending passwords, and financial transactions (UPI, Banking), etc should not be used on any unsecured WiFi network if you want to fully safeguard yourself against wifi hacking.
In addition, on case-to-case basis, few other *additional security countermeasures may be introduced across various hotspots such as:
In addition, on case-to-case basis, few other *additional security countermeasures may be introduced across various hotspots such as:
- Pure Guest Mode - Can access internet only, not other devices on campus network
- SSID Broadcast disabled - No Wifi advertisement/visibility
- Connection Duration limit - Limited time quota to use our network every day
- Data Cap Limit - Limited data quota per day
- MAC ring fencing - Only few hosts allowed access.
Users who are hyper-sensitive about the security, safety and privacy of their communications are advised to use VPN on all public WiFi networks including ours.
Comments
Post a Comment