Posts

Bad Security Stories, Volume I: The Big 12 Still Has No Idea If Their Football Coach-to-Player Communications Were Actually Compromised

Your humble author is starting a new Sniff Wi-Fi blog series today: Bad Security Stories Yours truly may not be the second coming of Bruce Schneier -- though from what I've read of Schneier's I like his vibe -- but all these years of sniffing (and working in Wi-Fi in general) have led to me picking up a fundamental understanding of communications and data security. So let's blog about it! A  college football cheating scandal -- or at least, the potential for one -- was recently uncovered and resolved in a matter of three days . To steal a quote from a memorable-but-not-to-be-described-in-polite-company scene in the film Tommy Boy... hmm, that's a mystery. A quick primer: Throughout last year's college football season, there were several accusations of 'sign-stealing'. Sign-stealing involves comparing the hand signals, posters and other 'signs' used by football coaches to signal to their players what formation and/or orchestrated 'play' to ru...

These Wi-Fi Retry Percentages Are Too Dang High (no really... Retry% statistics are often inaccurate)

Image
  Show  of hands: Who here has seen Retry percentages above 90%? If you work with Wi-Fi, your arm is likely reaching skyward as if you're hiding Darrell Lea licorice from the kids. (Hope you wore deodorant today.) Juniper Mist is most notorious for it. Nyansa Voyance -- which is no longer a Wi-Fi thing -- used to do it too. Aruba Central even has a built-in alert for it. The problem is, 90% retries doesn't really exist (and of course, 100+% retries is impossible). When an AP repeatedly sends retransmitted frames (packets) to a Wi-Fi client -- and let's pause to point out that centralized WLAN management systems can only reliably know AP-to-client (not client-to-AP) retry statistics -- the AP will typically drop a packet before re-sending it so  many times that the wireless retry percentage would ever truly hit 90%. So why, then, do we see retry percentage near, at or above 90%? Because some (most?) Retry% calculations often use a denominator of successful  frames in...

At Least They Didn't Blame the Wi-Fi

Prime Video's stream of the 49ers-Cardinals NFL game received plenty of bad reviews on social media. While most of the negativity focused on stream quality, Wi-Fi largely escaped blame. There is one application type that confounds networks above all others, and it is live video. Pick your poison: voice, location tracking, on-demand video, cloud-hosted apps... None of them cause problems as consistently or predictably as the livestream. The issue is a simple one: broadcast vs. two-way. Packetized data networks are a two-way communication medium. Receiver must acknowledge sender. Live video has, since its inception decades ago, been a broadcast technology. Your television doesn't send anything to the local broadcast tower. Same with cable boxes. Same with satellite dishes. Pushing against this immutable scientific fact is commerce. Sports leagues see the billions of dollars being spent by streaming services, and they want some. Streaming services see the millions of eyeballs tun...

Chips, Glorious Wi-Fi 6E Chips!

Qualcomm, owners of the Atheros line of Wi-Fi radios, recently announced the availability of Wi-Fi 6E chips. Game onnnnnnn! 6 GHz Wi-Fi is here. Sort of... Qualcomm is selling Wi-Fi 6E (802.11ax w/ 6 GHz support) chips, but we don't yet know when enterprise-grade APs and mobile devices will begin supporting 6 GHz Wi-Fi. Chip-to-product timelines can vary. Wi-Fi 5 (802.11ac) saw enterprise WLAN vendors sell products only a few months after chip announcements. Wi-Fi 6 (802.11ax) saw the big vendors wait a year or more before introducing new AP models. A ton of concerns factor into a vendor's decision on when to develop, manufacture and market new AP technology. Vendors with small market share may be extra eager. Aerohive tried to boost their enterprise Wi-Fi profile by being a leader in Wi-Fi 6. On the other hand, some vendors' enthusiasm for new Wi-Fi hardware may be dulled by competing organizational initiatives. Aruba/HPE, for example, was veering f...

The Case for Upgrading to Wi-Fi 6

In a recent Sniff Wi-Fi post, your humble blogger argued that upgrading to Wi-Fi 6 is a fool's errand.  A number of respected WLAN professionals disagree with my argument. They believe that many organizations would be well-served to upgrade to Wi-Fi 6, rather than waiting for Wi-Fi 6E.  Why upgrade to a non-6 GHz standard, when 6 GHz Wi-Fi has now been approved? There are reasons... Making one's own counter argument is a tricky endeavor. The temptation to construct and incinerate straw men is powerful. There is a reason that the right to cross-examine is ingrained in the constitution of the United States of America, as part of the 6th Amendment: "...The accused shall enjoy the right... to be confronted with the witnesses against him; to have compulsory process for obtaining witnesses in his favor..." In layman's terms (and this has to be the first literal usage of the phrase "layman's terms" in the history of Sniff Wi-Fi), the above is refer...

Pi in the Sky, Part 1: WLAN Pi Basics

Image
For some Wi-Fi professionals, WLAN Pi is the ultimate swiss army knife. For others, it is a byzantine puzzle.  Your humble blogger takes great pride in taking the complex and making it accessible. For the WLAN Pi, it starts with the Basics. The WLAN Pi project has been part of the WLAN professional community for several years. Conceived as a some-assembly-required kit project, the Pi has now grown beyond its humble roots. Your humble blogger has been fascinated by the WLAN Pi for some time, in large part because of the involvement of Jerry Olla. Jerry is a long time member of the WLAN community. He is based in Wisconsin, which makes me like him. He believes that the Milwaukee Brewers should not have received a publicly-funded baseball stadium, which makes me like him less. (I kid, I kid.) Jerry reached out to yours truly after a tweet expressing frustration at the WLAN Pi experience. Many Wi-Fi people have read, seen or been told about cool stuff that can be done with ...

The Risk and Reward of Wi-Fi 6 Upgrades

With 6 GHz Wi-Fi around the corner in the form of Wi-Fi 6E, upgrading to Wi-Fi 6 becomes a risky proposition. It was just over a year ago that your humble blogger heard the "news" about Wi-Fi 6 (802.11ax). The Samsung Galaxy 10 was on the market. It supports Wi-Fi 6. Our sales engineers were happy to inform us of the upgrade possibilities. Today's news is about a new technology, Wi-Fi 6E. It offers access to the 6 GHz frequency band, which is great. It is not available as a software upgrade from Wi-Fi 6 (as your humble blogger discovered recently ), which is not so great. "Future proofing" has always been elusive. As we are all experiencing right now, nothing can protect an organization from the whims of nature (human or otherwise). I wasn't saying "wait for 802.11n" in 2005 or "wait for 802.11ac" in 2011. If budget, manpower and leadership align, go for it. The reason your humble blogger says "wait for Wi-Fi 6E" today...