Guide to Securing Legacy IEEE 802.11 Wireless Networks

NIST

OWASP WLAN 802.11 Wireless Securing

Organizations should create a wireless networking security policy that addresses legacy IEEE 802.11 WLAN security.

A wireless networking security policy and an organization’s ability to enforce compliance with it are the foundations for all other security countermeasures. Policy considerations should include the following:

• Roles and responsibilities, such as which parties are authorized and responsible for installing and configuring WLAN equipment
• WLAN infrastructure security, including physical security requirements, acceptable use guidelines, and requirements for the use of encryption and for cryptographic key management
• WLAN client device security, such as hardware and software configuration requirements, limitations on how and when WLAN client devices may be used, and guidelines for the protection of WLAN client devices
• WLAN security assessments, particularly the frequency and scope of assessments and the actions to be taken when rogue or misconfigured devices are identified.