| Summary: | 碩士 === 長庚大學 === 資訊管理研究所 === 94 === While the wireless networks have been widely used by the public, the security becomes the most important issue for network administrators. Therefore, various security mechanisms, such as firewalls, Intrusion Detection System (IDS) and system authentication, have to be built. However, as the intrusions and attacks nowadays are changed with each passing day, the objective of this research is to build a security auditing model, which provides network administrators the basis to correct and adjust related security settings in order to maintain the wireless network security of the corporation.
In this research, we focus on the study of the security issues of IEEE 802.11 Wireless LAN (WLAN). Based on the current WLAN architecture, we make use of 2-phase risk analysis model. In the first phase, we define various risk factors, and make the evaluation table, which is evaluated by the auditor. In the second phase, by referring to the BS7799 standard, the improvement suggestion for the high-risk items of the first phase will be provided. Finally, the suitable plan of information security management will be made from the complete standards. According to this proposed model, we do case studies, analyze the results, and then develop a complete security system. The goal of this research is to develop a security auditing model for WLAN to enhance the information security management system (ISMS) of WLAN, and propose a feasible standard model for administrators and auditors.
|
|---|
