Mondonet Project - The Principles

The purpose of this project is to study the technological, social and regulatory feasibility of developing a peer-to-peer mesh networking protocol. This would serve as the foundation of a decentralized, ad hoc wireless mesh network, which would illuminate potential technology-based solutions to censorship and surveillance on existing digital communications platforms.
Read the project description here.

1. Decentralized
The network should not be operated, maintained, or in any way reliant upon a single or minimally differentiated set of entities or technologies. No individual, entity or group should be central to the network to the extent that their absence would measurably impact its functionality or scope. Network participation should not require access to fixed, physical infrastructure of any sort.
2. Universally Accessible
The requisite technology and expertise required to participate in the network should be available at minimal cost and effort to every human being on the planet. Furthermore, all users should be able to extend the network’s content and functionality to suit their own needs, or those of others. No aspect of the network’s functioning should be reliant upon proprietary technologies, information or capital.
3. Censor-proof
The network should be resistant to both regulatory and technical attempts to limit the nature of the information shared, restrict usage by given individuals or communities, or render the network, or any portion of it, inoperable or inaccessible.
4. Surveillance-proof
The network should enable users to choose exactly what information they share with whom, and to participate anonymously if they so desire. Users should only have access to information if they are the designated recipients, or if it has been published openly.
5. Secure
The network should be organized in a way that minimizes the risk of malicious attacks or engineering failure. Information exchanged on the network should meet or exceed the delivery rate and reliability of information exchanged via the Internet.
6. Scalable
The network should be organized with the expectation that its scale could reach or even exceed that of today’s Internet. Special care should be taken to address to the challenge of maintaining efficiency without the presence of a centralized backbone.
7. Permanent
The network’s density and redundancy should be great enough that, despite its ad hoc nature, it will persistently operate on a broad scale, and be available in full to any user within range of another peer.
8. Fast (enough)
The network should always achieve whatever speed is required for a “bottom line” level of social and cultural participation. At present, we assert that the network’s data transfer rate should, at a minimum, be enough for voice-over-IP (VoIP) communications, and low-bitrate streaming video.
9. Independent
While the network will have the capacity to exchange information with Internet users and nodes, it should be able to operate independently, as well. A large-scale failure or closure of Internet infrastructure and content should have minimal effect on the network’s operations.
10. Evolvable
The network should be built with future development in mind. The platform should be flexible enough to support technologies, protocols and modes of usage that have not yet been developed.

source : http://mondonet.org/wiki/doku.php?id=wiki:mondonet

Welcome to Home-WLAN Newsletter

Hello Diah Widi,

Welcome to Home-WLAN Newsletter.

Your subscription will start with the next issue.

If you'd like to start *NOW*, the back issues are at...
http://www.home-wlan.com/HomeWLAN_Newsletter-backissues.html

I hope you enjoy the e-zine as much as I do writing it.

Wishing you all the best,
Igor Bartolic
http://www.home-wlan.com

Webinar Confirmation: How can wireless protect itself from cloud computing glitches?

Dear Diah, Thank you for registering for the FierceLive! webinar "How can wireless protect itself from cloud computing glitches?". The webinar will take place Wednesday, November 17th, at 2 pm ET / 11 am PT. To view the webinar, simply return to the lobby page and enter your email address in the "already registered" field. Click here to view the lobby page. Click here to add this event to your Outlook calendar. Please reply to this email with any questions and we will get back to you as soon as possible. Thank you! Rebecca Friend Webinar Coordinator FierceMarkets rebecca@fiercemarkets.com FierceLive! Webinars - Click to see calendar Sponsored By: FierceMarkets 1900 L Street NW, Suite 400, Washington, D.C. 20036. www.fiercemarkets.com

WEP THREATS

WEP relies on a secret key that  is shared between a mobile station (e.g. a laptop) and a base station (i.e. an access point). Every transmission from a device on the LAN contains its MAC address so the identity of the sender can be checked. But how do we know that someone else did not forge a message with a fake MAC address. One approach is to agree to a secret code that will be used to protect every subsequent message. Because only the true device and the access point know the secret code, each message can be validated as authentic when it is received. The secret key is  used to encrypt packets before they are transmitted and to decrypt them when they are received as well.

The original key length was 40 bits, which most manufacturers have increased to 104 bits. There is a problem in using a fixed key value because if an attacker spots the same encrypted bytes, he knows that the original plaintext is being repeated. The solution to this problem is the initialization vector (IV). Instead of just using the fixed secret key to encrypt the packets, the secret key is combined with a 24-bit number that changes for every packet sent. This extra number is called the IV and effectively converts the 104-bit key into a 128-bit key. Because the IV value always changes, the key used for encryption effectively changes with every packet so even if the input data (plaintext) is the same, the encrypted data (ciphertext) is always different.WEP uses a stream cipher called RC4 to encrypt the data packets. When the frame is ready for encryption, the system must select an IV value and append it to the secret WEP key .Once the IV and WEP key are  combined together, the RC4 cipher is used to produce a pseudorandom number called "keystream". Before transmission takes place, WEP combines the keystream with the plaintext through a bitwise XOR process, which produces ciphertext (encrypted data).

In fact, the IV is not a secret. It is sent unencrypted as part of the transmission so the receiver knows which IV value to use in decryption as shown in Fig. 2. The receiving station uses this IV along with the shared secret key supplied by the user to decrypt the encrypted  portion of the frame body. 

To be effective, the same IV value should never be used twice with a given secret key.

From the Link Layer of a WLAN, there are three possible types of frames: Management Frames, Control Frames, and Data Frames. Any manipulation of these frames that directly or potentially jeopardizes data confidentiality, integrity, mutual authentication, and availability will be considered a threat.

CCIE Brain Dump related site

CCIELab Real Exam Questions,CCIELab Free Braindumps,CCIELab Exam ...
CCIE Lab Practice Test, CCIE Lab Exam Questions, CCIE Lab braindumps,CCIE Lab Exam Prep ... CCIELab braindump sites cannot compare to the understanding, ...

CCIE-LAB Braindumps And Study guides
This CCIE-LAB Cisco braindump exam contains not only study notes, study guides but ... Cisco CCIE-LAB exam training requires the brain dumps, study notes, ...

CertCities.com | News: UPDATED: Braindump Site Returns, Litigation ...
Troytec.com (also known as Testkiller.com), a popular braindump site that ... Make all certs like CCIE? Yeah that will do but how many people will bother to ...

CCNA Braindumps, MCSE Braindump, A+ Braindumps
NET, CCNP, CCSP, CCIE, CCDA, DBA 10g Oracle, CIW, CCSE, CCSA, Network+, ... 4exam.com practice tests are not brain dumps but one step ahead than of the ...

CCIE Certification and CCIE Training for the CCIE exam using CCIE ...
Our CCIE study guides are much more effective and outperform CCIE braindump websites and the CCIE braindumps they offer. Only qualified Cisco professionals ...

ccielab@groupstudy.com
Please do not break your non-disclosure agreement with Cisco if you have already taken the CCIE Lab. This is NOT a "Brain-Dump" group for the lab. ...

MCSE, MCDBA, MCSD, MCSA, CCNA,CCNP,CCIE,CCIP, CIW, OCP, A+ tests ...
Chinatag content is 100% braindump free. Brain dump sites are not ... Braindump sites and the braindumps they provide are sub-standard training material. ...

Cisco 350-001 Certification 350-001 Practice Exam Test 350-001 ...
350-001 CCIE Written -- Routing & Switching. Demo | Question NO.: 460 ... Brain Dump 350-001 Actual Question 350-001 Certificate Course 350-001 ...

Braindump free - CompTIA, CCNA, CCNP, CCIE, MCSE exam questions
Provides free practice questions for MCSE, Oracle, CompTIA, LPI, Cisco and other exams. Questions delivered via email or in an online test format.

CCIE course details and free CCIE online course resources offering ...
Why not try one of our CCIE tutorials FREE right now! You will note that it doesn’t contain any brain dump CCIE course material like free CCIE brain dump ...

Cisco Certification Exam Preparation Resources - ccna boot camp ...
ccie boot camp | ccie forums | ccnp braindump | ccna 607 | ccnp practice exams | ccna test questions | 642-432 | ccna cheat sheets | 640-861 | ccie lab tips ...

Implementing Cisco Unified Wireless Networking Essentials (IUWNE) Exam : Cisco 640-721

1. For the following items ,which one correctly describes fading?
A. A function of the frequency and should be provided in the cable specification by the vendor.
B. Another signal source is producing energy on the channel in which you are trying to operate.
C. A time-varying change in the path loss of a link with the time variance governed by the movement of objects in the environment, including the transmitter and receiver themselves.
D. The desired signal reaches the receiving antenna via multiple paths, each of which has a different propagation delay and path loss.
Answer: C

2. Observe the following statements, which limitation applies to the use of the Cisco WLAN Solution Management over Wireless feature?

A. Read-write access is not available; only read-only access is supported.

B. Controllers must be managed using only secure protocols (that is, SSH and HTTPS), not nonsecureprotocols (that is, HTTP and Telnet).

C. Uploads and downloads from the controller are not allowed.

D. Wireless clients can manage other controllers however not the same controller and AP to which the client is associated.

Answer: C

3. As a network technician ,you must know CiscoWiSMs . Up to how many CiscoWiSMs are supported in a
single mobility group operating under v5.0 code?
A. 16
B. 12
C. 24
D. 5
Answer: B

4. You work as a network technician at Cisco.com, read this subject carefully ,then answer the question. The existing Cisco Unified Wireless Controller is running v5.0 code for both the controllers and the Cisco WCS. A controller has been configured with an appropriate rogue rule condition to report discovered APs to the Cisco WCS.What default alarm level is used to display all rogue APs in the Alarm Summary?
A. Major
B. Critical
C. Flash
D. Minor
Answer: D

5. What are the four types of wireless networks?(Choose four)
A. Wireless PAN
B. LAN
C. MAN
D. VLAN
E. WAN
Answer: ABCE

6. Cisco Client Management Frame Protection is running on a mobility group with two controllers. For the following options ,which two MFP requirements protect the network? (Choose two.)
A. requires the use of a nonbroadcast SSID
B. requires CCXv5
C. implements the validation of wireless management frames
D. forces clients to authenticate, using a secure EAP method only
Answer: BC

7. What happens when client exclusion is enabled with a timeout value of zero ?
A. Clients are excluded indefinitely.
B. Client exclusion is disabled.
C. Clients are never excluded.
D. Clients must be explicitly included by specifying the MAC address.
Answer: A

8. The central office is currently using a combination of 4400 and 2100 series WLAN controllers running v4.2 and a variety of LWAPP-enabled access points servicing both 2.4 GHz and 5 GHz. The WLAN deployment has been extended to each remote office by implementing a 526 WLAN controller running v4.1 and several 521 access points. Wireless client deployment uses EAP-TLS authentication by use of a centralized RADIUS server plus 802.11n for performance. After the first remote office deployment, remote office users complain that they are not connecting via 802.11n.
Which will most likely cause this problem?
A. The 521 AP does not support 5 GHz, which prohibits 802.11n.
B. The 521 AP and 526 WLAN controllers do not support AES, which prohibits 802.11n.
C. The 526 WLAN controller does not support external authentication via RADIUS, prohibiting authentication.
D. The 526 WLAN controller does not support 802.11n with either v4.1 or v4.2.
Answer: D

9. How do the characteristics that are available on the Cisco WCS for Linux version differ from those of the Cisco WCS for Windows version?
A. Cisco WCS for Linux is required for deployments.
B. Assuming that there are no differences in hardware, a Cisco WCS for Linux can support up to 750 wireless LAN controllers. A Cisco WCS for Windows can support up to 250 wireless LAN controllers.
C. Cisco WCS for Windows includes support for Cisco Spectrum Expert clients. Cisco WCS for Linux does not support Cisco Spectrum Expert clients.
D. There are no differences in features between the Linux and Windows versions of Cisco WCS.
Answer: D

10. What is the typical maximum range of a wireless PAN?
A. 45 feet
B. 50 feet.
C. 55 feet
D. 60 feet
Answer: B

11.Which one of the following CLI commands displays the controller configuration in a way that is similar to the way that it is shown on Cisco IOS routers?
A. show run-config
B. show config
C. show run config
D. show running-config
Answer: D

12. Observe the following attacks, which two does Management Frame Protection help to mitigate?
(Choose two.)
A. War Driving
B. Man-in-the-Middle
C. Eavesdropping
D. Denial of Service
Answer: BD

13. Which device(s) will Lightweight access points send control traffic to?
A. The Wireless Control System.
B. Other access points.
C. The Wireless Controller.
D. Lightweight access points don't send control traffic.
Answer: C

14. For the following elements ,which three define the 802.11n implementation of MIMO? (Choose three.)
A. Channel Bonding
B. Maximal Ratio Combining
C. Spatial Multiplexing
D. Transmit Beam Forming
Answer: BCD

15. True or false: A wireless PAN consumes little power from small handheld computer devices.
A. True
B. false
Answer: A

16. In the AP Layer 3 controller discovery process, after the LWAPP Discovery Request is broadcast on a local subnet, which action will AP take next?
A. Send an LWAPP response to the master controller if known.
B. Send an LWAPP discovery request to controllers learned via OTAP if operational.
C. Wait 5 seconds and resend a Discovery Request to the local subnet.
D. Determine whether the controller responses are the primary controller.
Answer: B

17. Which three values will be used to calculate Effective Isotropic Radiated Power? (Choose three.)
A. antenna bandwidth
B. antenna gain
C. cable loss
D. transmission power
Answer: BCD

18. When importing a single campus map into the Cisco WCS 5.0, which four file formats will be used?
(Choose four.)
A. BMP
B. PNG
C. GIF
D. JPEG
E. JPG
Answer: BCDE

19. You are a network engineer at Cisco.com, When creating a wireless profile in the Cisco ADU and you have selected the WPA/WPA2/CCKM radio button option, what other decision will you make and then configure on this same screen?
A. the SSID of the wireless client
B. the length and value of the pre-shared key
C. the EAP type to be used for authentication
D. the encryption type
Answer: C

20. What is a common standard for wireless LANs?(Choose two)
A. IEEE 802.11
B. IEEE 802.3z
C. Wi-Fi
D. IEEE 802.16.
Answer: AC

CCIE Wireless Written Exam Blueprint

The comprehensive CCIE Wireless written exam (#350-050) has 100 multiple-choice questions and is two hours in duration. The topic areas listed are general guidelines for the type of content that is likely to appear on the exam.Please note, however, that other relevant or related topic areas may also appear.

Exam Sections and Sub-task Objectives
1.00  Plan WLAN installations  √
1.01 Define standards-based WLAN (802.11x standards)  
1.02  Define WLAN organizations and regulations  
1.03  Identify customer requirements for the wireless LAN  
1.04  Translate customer requirements into services and design recommendations  
1.05  Determine WLAN security policies and constraints  
1.06 Identify ambiguity and/or information gaps  
1.07  Evaluate environmental characteristics  
1.08  Define the tasks/goals for a preliminary site survey  
1.09  Modify proposed solutions based on the applicable regulations  
1.10  Evaluate the existing L2/L3 network infrastructure  
1.11  Conduct the site survey
2.00  Design WLAN installations  
2.01  Determine AP quantity and placement based upon the site survey and customer requirements, includes
AP type and antenna type

2.02  Recommend autonomous or unified deployment model and design  
2.03  Identify the wireless features needed to be implemented in the design, including AP groups, L2/L3
roaming, H-REAP, VoWLAN, AAA override, etc.

2.04  Design the wireless topology including VLANs, DHCP, SSIDs, IP addressing, mobility groups, etc.  
2.05  Draft an RF operational model that includes:  
    (a) Radio resource management (Auto-RF, manual, hybrid, TPC and DCA)  
    (b) Channel use (Radar, other non-WiFi interference)  
    (c) Power level, overlap  
2.06  Draft WLAN Security policies:  
    (a) Traffic restrictions for L2 filters (802.11 association filters), L3/L4 filters (ACL)  
    (b) Per user, per interface, per SSID; Management access restrictions; peer-to-peer blocking  
    (c) Layer 2/3 security  
    (d) WPS, MFP, NAC  
2.07  Specify the server infrastructure needed to provide the required services  
2.08  Determine the feasibility of carrying LWAPP over WAN  
2.09  Determine hardware and software provisioning requirements for the supporting network infrastructure  
2.10  Determine client provisioning given client hardware and software requirements  
2.11  Use wireless network design tools
2.12  Draft a design that includes deliverables such as: detailed or high level annotated topology diagram,
internal estimates for each site, BOMs for a wireless LAN
3.00  Implement WLAN   Installations  
3.01  Implement the WLAN in stages including priming and system testing access points  
3.02  Set appropriate configuration parameters  
3.03  Configure the existing infrastructure applications to support the WLAN, including authentication services
(Radius, TACACS+, CA), NTP, DHCP, DNS (LWAPP   controller), clients

3.04  Configure the existing network infrastructure to support the WLAN, including VLANS, Multicast, QoS,
routing, switch port configurations, port access through Firewalls (guest access, anchor controllers), etc.

3.05  For an autonomous wireless architecture deploy APs and antennas, Wireless Distribution Systems
(WDS),

3.06  Bridges (Point-to-Point, Point-to-Multi-Point), Work-group bridges  
3.07  For a unified wireless architecture deploy APs and antennas, WLC with(out) WCS, AP and WLC
configurations (auto-provisioning), location (location server, WCS Maps, location calibration)

3.08  Implement WLAN Security policies, including:  
    (a) Traffic restrictions:  
          (i) L2 filters (802.11 association filters)  
          (ii) L3/L4 filters (ACL) - per user,  per interface, per SSID  
          (iii) Management access restrictions  
          (iv) Peer-to-peer blocking  
    (b) Layer 2/3 security  
    (c) WPS,MFP  
3.09  Implement support Voice over WLAN deployments, for both Unified and Autonomous  
3.10  Verify WLAN operation, Client, Location, Voice, Roaming, Post deployment site survey, Network High Availability, Auto-RF, etc
4.00  Operate WLAN   installations  
4.01  Determine key performance indicators (kpi) baseline WLAN operational characteristics  
4.02  Collect baseline WLAN operational characteristics using network analysis tools  
4.03  Establish fault management policy and procedures for indicators that should be routinely monitored
including Establish Alert Profiles; Noise, Channel Utilization, Interference, Load, etc.

4.04  Monitor for faults  
    (a) Actively monitor changes based on thresholds (proactive); SNMP polling  
    (b) Receive alarms and wait until   notification. (reactive); SNMP traps, syslog messages, WCS
notifications

4.05  Monitor performance   trends including Capacity planning; Error rates, Number of clients associated with
an AP, AP loading, Threshold figures (1% packet loss for Voice),  reference 802.11t; End-to-end traffic
flows, etc.

4.06  Monitor WLAN Security policies.  
    (a) Traffic restrictions:  
          (i) L2 filters (802.11 association filters)
         (ii) L3/L4 filters (ACL) - per user, per interface, per SSID  
          (iii) Management access restrictions  
          (iv) Peer-to-peer blocking  
    (b) Layer 2/3 security  
    (c) WPS  
4.07  Monitor RF environments using Cisco Spectrum Expert; AP infrastructures  
4.08  Correlate events, alarms and alerts
5.00  Troubleshoot WLAN   issues  
5.01  Use the standard troubleshooting method to solve problems  
5.02  Check , validate and analyze:  
    (a) Client Devices  
          (i) Interpret and analyze client side logs.  
          (ii) Validate client   connectivity/troubleshoot client via WCS.  
          (iii) Interpret and analyze wireless traces.  
          (iv) Client wireless drivers and supplicant software.  
    (a) Network infrastructure.  
          (i) Check and validate current channel/power settings  
          (ii) Validate security events with WCS  
          (iii) Validate location information in WCS  
          (iv) Validate trap generation,  notifications in WCS  
          (v) Collect appropriate logs for analysis to isolate the problem.  
          (vi) Interpret and analyze sniffer traces  
5.03  Analyze the collected information on the RF environment using client-side information and AP-side
information (through WLC or WCS) and spectrum analyzer (Cisco Spectrum Expert).

5.04  Audit voice over WLAN deployment  
5.05  Verify baseline functionality has been restored upon implementing problem resolution