Changes between Version 4 and Version 5 of FAQ

Show
Ignore:
Timestamp:
01/18/10 00:31:58 (8 months ago)
Author:
marek (IP: 61.59.128.157)
Comment:

How to make my mesh network secure ?

Legend:

Unmodified
Added
Removed
Modified

  • FAQ

    v4 v5  
    44 
    55At this point no B.A.T.M.A.N. implementation (we know of) supports simulators like the ones mentioned above. However, some people experiment with B.A.T.M.A.N. using emulators (UML/Qemu/etc). If you are looking for step-by-step instructions to install such a system you can [wiki:Emulation read our emulation document]. 
     6 
     7'''How to make my mesh network secure ?''' 
     8 
     9What kind of security do you need? Security is a big field. Maybe you just  
     10mean encryption and authentication..... 
     11 
     12When you only want to make the whole wlan stuff unreadable for the outside,  
     13you could just use WPA_NONE. But this doesn't resolve the problem that the key  
     14could leak and make the mesh attackable - but that is something which could  
     15always happen. So it is probably not a solution for wifi community projects, but for  
     16mesh networks controlled by a company. 
     17 
     18There are other ideas for traffic over batman-adv. Just forget about  
     19encrypting your data on the wifi layer, but instead do everything some layers above.  
     20Some people experimented with the idea of implementing the needed authentication and  
     21encryption over IPsec.  
     22 
     23And most of the encryption and authentication stuff has to be resolved by the  
     24user and not by the network provider. This means https for sensible data  
     25instead of http, ssh instead of telnet, pop3s instead of pop3 and so on. 
     26 
     27So it really depends what you want and cannot be resolved in a "security for  
     28everything, against any attack and for every purpose" blob. 
    629 
    730