Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Guidance on Wireless Local Area Network Security is Close at Hand

The National Institute of Standards and Technology (NIST) has released in final form a guide to enhanced security for wireless local area networks (WLAN). A WLAN is a group of wireless networking devices within a limited geographic area, such as an office building, that exchange data through radio communications.

Guidelines for Securing Wireless Local Area Networks (NIST Special Publication 800-153) recommends that valuable information be protected by integrating security into every step of the system development process—from initiation to maintenance to disposal.

Employees can use mobile devices, including laptops and smart phones, connected to the WLAN to perform tasks that could be done on desktops, but with the freedom to work anywhere in the covered area. While WLANs can improve productivity, they can add an additional security challenge. WLANs often have weaker configurations and authentication processes that make them vulnerable for attackers to penetrate and gain access to sensitive information.

The WLAN's security depends upon how well all of its components, including client devices and wireless switches, are secured. The new guide provides recommendations to improve security on such topics as standardizing WLAN security configurations, including configuration design, implementation, evaluation and maintenance; and provides guidelines concerning the selection of monitoring tools and the frequency of security monitoring.

The publication supplements other NIST publications on WLAN security and points readers to other NIST publications on system planning, development and security activities.

The recommendations included in SP 800-153 are applicable to the protection of unclassified wireless networks and of unclassified facilities that are within range of unclassified wireless networks.

SP800-153 is available at www.nist.gov/manuscript-publication-search.cfm?pub_id=910174. For a guide to additional NIST publications on computer security, including wireless security, see the Computer Security Resource Center list.

Released March 6, 2012, Updated December 11, 2018