If you’re unclear about how this recent announcement affects your in-home security, read on.
WPA3 is the third generation of wireless protection for WiFi routers. WPA (Wi-Fi Protected Access) is the protocol and encryption that protects the wireless communication between your laptop or phone to the WiFi router. Without it, anyone within the distance of your WiFi router can see what you are doing on the Internet, which is why it’s paramount to keep that communication protected.
Unfortunately, hackers have found ways to break this. The original protection WEP (Wired Equivalent Privacy) was quickly hacked due to the use of a static key and the first generation of WPA followed that was also hacked and WPA2 became the standard. WiFi users have enjoyed pretty good protection until last year when a new method called KRACK (Key Reinstallation AttACK) demonstrated that WPA2 can also be compromised. Companies such as ourselves have provided patches to plug this new crack in the system (pun intended), but there may be other vulnerabilities that can be exposed since the standard is more than 15 years old by now.
Luckily, the wizards at the WiFi Alliance have been working on a new protection standard, WPA3. With everything from toothbrushes to refrigerators connected to WiFi, extra precautions must be taken to protect the runaway success of WiFi.
There are four areas of improvement that WPA3 has over the existing WPA2:
WPA3 looks to be a great solution for years to come, however, it’s not enough because hackers are using other methods to attack the WiFi network. The recent VPNFilter virus doesn’t take advantage of any of the WPA2 shortcomings. Instead, the attack is targeting known vulnerabilities in the WiFi routers’ web interface, remote ports that are open with hard-coded passwords, software that is not updated, and vulnerable connected IoT devices. WPA3 has fixed none of these security issues.
While WPA3 is great to have, in a communication system, there are multiple layers and WPA3 only secures the basic wireless physical layer. To ensure better security, we also need to secure the networking layers and the application layer. Traditional anti-virus software has been understood to handle the application layer protection and has done a decent job thus far. But with the explosion of connected devices in the homes and businesses, network layer protection is severely lacking in the industry.
Traditional routers let all traffic in and out with no regard if the traffic is malicious. For devices like connected thermostats and smart TVs, there is no way to install anti-virus software. All these devices are little computing devices mostly running a version of Linux OS that can do great damage when used by a nefarious hacker. Any compromised device can compromise the entire network, and because of this, network layer protection is not only a sensible layer of protection but more critical than ever as we add ever more connected gadgets in our homes. Hence, WPA3 is just not enough. But do upgrade when available…
John Wu (Twitter: @johnwu71) is one of the inventors of the MiFi intelligent mobile hotspot and CEO and co-founder of Gryphon Online Safety, a company dedicated to protecting the connected family with Gryphon, the world’s first mesh WiFi router that uses machine learning to block malware from entering your network and protect kids from inappropriate content online.
With over 20 years of experience in networking technology and security, the Gryphon co-founders led the team that invented the revolutionary MiFi mobile hotspot technology. As much as we appreciate the benefits and convenience of being connected, we also deeply understand the associated threats.
Try the Gryphon router in your home risk-free for 90 days. If you don’t love it, send it back to receive a no questions asked refund. We’ll even cover the cost of return shipping!