Security Concern - Wifi Sharing

Toggle sidebar Toggle sidebar
DaveSC

DaveSC

New member
Jan 4, 2013
72
0
0
Visit site
The function that allows you to share wifi connections with your contacts has serious implications for businesses. Yes I know it doesn't expose the key to the end users but let me give an example.

In our facility we provide Cell Phones to employees in key positions only. Other employees have their own cell phone but we do not allow them on our wifi. If an employee with Windows Phone 8.1 can circumvent this by simply sharing the wifi connection with employees that have their own phone then we cannot control who has access to our network. Additionally people from outside the company could gain access to our network and resources.

Am I missing something here?
 
hopmedic

hopmedic

Active member
Apr 27, 2011
5,231
0
36
Visit site
Sounds like a legit concern, to me. I don't have access to any of the enterprise tools, but I wonder if they allow you to prevent this sharing?
 
J

JasonKruys

New member
Nov 23, 2012
160
0
0
Visit site
I would suggest that if network security is that important, and is limited to few people as you suggest, then a wireless key would/should not be the only measure employed and you would be employing a Mac address filter as well, so there would not be a problem. If security of your network is that important that this feature would cause an issue, and you are not bothered employing other measures (particularly) something as simple as mac filtering, then you have much bigger problems!

Sent from my Lumia 1520 using Tapatalk
 
DaveSC

DaveSC

New member
Jan 4, 2013
72
0
0
Visit site
Don't be ridiculous.. Mac address filtering? This is a secondary network that hundreds of clients log into throughout the year, there is a carved out vlan for cellular wifi that is accessed by some of the production staff that do not need access to the primary network which is radius authenticated via ubiquity. What I don't want is 100 extra people that we elected to not provide internet access to because it's not required as a function of their job using our bandwidth to watch cat videos because one person shared access via this new "feature".

Having said all that it's still a gaping hole for lots of companies to allow employees to push the wifi key to other people.
 
DaveSC

DaveSC

New member
Jan 4, 2013
72
0
0
Visit site
hopmedic said:
Sounds like a legit concern, to me. I don't have access to any of the enterprise tools, but I wonder if they allow you to prevent this sharing?
Click to expand...

We do have the ability to block specific applications or functions via exchange activesync policies but since this isn't a specific application that does not apply. I am only on Exchange 2010 at this point but I am up to date patch wise and there is no option to disable sharing of wifi access credentials under the policy options.
 
J

JasonKruys

New member
Nov 23, 2012
160
0
0
Visit site
Not ridiculous at all. You kind of missed the point. I was just suggesting it is not the gaping corporate security hole people are making out. Mac address filtering was one example, that I thought people on this site might be able to relate to. The point was, if security or restricting access is even remotely important, a simple WPA key would not be your ONLY form of defence. At the end of the day, it is not really any less secure than someone just telling someone else the key? This is more likely a problem than WiFi sharing on WP - it just makes it marginally easier for people who are already inclined to share the key to do so... Surely? The option to share the network has to be deliberately enabled for that specific network.

Sent from my Lumia 1520 using Tapatalk
 
DaveSC

DaveSC

New member
Jan 4, 2013
72
0
0
Visit site
JasonKruys said:
Not ridiculous at all. You kind of missed the point. I was just suggesting it is not the gaping corporate security hole people are making out. Mac address filtering was one example, that I thought people on this site might be able to relate to. The point was, if security or restricting access is even remotely important, a simple WPA key would not be your ONLY form of defence. At the end of the day, it is not really any less secure than someone just telling someone else the key? This is more likely a problem than WiFi sharing on WP - it just makes it marginally easier for people who are already inclined to share the key to do so... Surely? The option to share the network has to be deliberately enabled for that specific network.

Sent from my Lumia 1520 using Tapatalk
Click to expand...

While I kind of get what you are saying you are assuming that the end users actually know the key.
 
Joel S79

Joel S79

New member
Jun 14, 2013
148
0
0
Visit site
JasonKruys said:
Not ridiculous at all. You kind of missed the point. I was just suggesting it is not the gaping corporate security hole people are making out. Mac address filtering was one example, that I thought people on this site might be able to relate to. The point was, if security or restricting access is even remotely important, a simple WPA key would not be your ONLY form of defence. At the end of the day, it is not really any less secure than someone just telling someone else the key? This is more likely a problem than WiFi sharing on WP - it just makes it marginally easier for people who are already inclined to share the key to do so... Surely? The option to share the network has to be deliberately enabled for that specific network.

Sent from my Lumia 1520 using Tapatalk
Click to expand...

I agree. The corp I work for has very strict security around Wifi access. It's restricted to specific devices, and non-approved devices can access another network that requires a them to login via a portal using their Active Directory credentials, which they can obviously restrict by user. Wifi Sense's sharing can't beat either of those methods.

Oh, and you might be able to specifically block access to Wifi Sharing using the new enterprise tools with 8.1.
 
primortal

primortal

New member
Dec 5, 2011
212
0
0
Visit site
DaveSC said:
The function that allows you to share wifi connections with your contacts has serious implications for businesses. Yes I know it doesn't expose the key to the end users but let me give an example.

In our facility we provide Cell Phones to employees in key positions only. Other employees have their own cell phone but we do not allow them on our wifi. If an employee with Windows Phone 8.1 can circumvent this by simply sharing the wifi connection with employees that have their own phone then we cannot control who has access to our network. Additionally people from outside the company could gain access to our network and resources.

Am I missing something here?
Click to expand...

There must be something to mark the wifi connection as not shareable. The Microsoft Store in my listing shows that as "can't share".
 

Attachments

  • wp_ss_20140418_0002.png
    wp_ss_20140418_0002.png
    33.1 KB · Views: 18
Last edited:
You must log in or register to reply here.

Similar threads

S
My Surface Pro X Review
Replies
2
Views
6K
Surface PCs, Laptops, Desktop PCs Discussion
toddpart
toddpart
A
What is Enterprise focus anyway?
Replies
1
Views
2K
Windows Discussion
xandros9
xandros9
James Falconer
  • Locked
  • Sticky
Community Rules & Guidelines
Replies
0
Views
4K
Windows Central Archive
James Falconer
James Falconer
W
  • Question
why i cant't connecting with my wi-fi
Replies
0
Views
995
Hardware Support: Ask a Question
WPCentral Question
W
thurask
Windows 10 build 17083 discussion (Redstone 4, Fast)
Replies
1
Views
5K
Windows Discussion
Old_Mil
O

Latest posts

Trending Posts

Members online

Total: 469 (members: 3, guests: 466)

Forum statistics

Threads
323,239
Messages
2,243,502
Members
428,046
Latest member
Nathanboro12

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom