Securing Campus Wireless LANs
Abstract
Most KENET member institutions of higher learning have deployed a campus WLAN. The campus WLAN is deployed in areas across campus where most students have access, including lecture halls, hostels and social areas. However, the campus WLAN is not secure and in most campuses is open (not secured) or uses a shared secret. Some universities have used mac address authentication on a campus WLAN, a solution that does not scale and mac addresses can be easily spoofed.
KENET has deployed campus WLANs in over 25 member institutions campuses. This paper will document the lessons learned from previous WLAN deployments focusing on campus WLAN design, autonomous versus lightweight access points, WLAN security, 802.1x, AAA and migrating to eduroam.