My WLAN Security Boot Camp at WLPC EU

On By Karsten

Registration is now open for this year’s WLPC (Wireless LAN Professionals Conference) in Prague. These are the important dates:

  • The main conference runs from the 25th to the 27th of October
  • The pre-conference Boot Camps run from the 22nd to the 24th of October

If there are enough registrations, I will teach the WLAN Security Boot Camp.

Sadly, this training didn’t get enough bookings. Contact me if you are interested in this training individually for your company.

I want to give some pieces of information about what to expect and what this training is not:
First, this training is not:

  • A Hacking/Pen testing training. That is what Phil Morgans Boot Camp is for.
  • An implementation training. We don’t configure anything, although some references about configuration on Cisco Catalyst 9800 exist. For Catalyst 9800 Implementation, Chris Avants teaches “9800 Rockstar”, and Jim Palmer teaches a Ruckus Class.
  • A deeper look into vendor features. Probably 90 to 95 percent is vendor agnostic.
  • A certification class. However, it will help you if you are preparing for the CWSP.
  • An Analysis training. We will analyze communication in Wireshark, but we will focus entirely on everything that is security related. For a complete training on the analysis of WLANs, there is Rasika Nayanajiths “Rockstar Wireless Analysis” or Peter Mackenzies CWAP Wi-Fi Analysis.
  • (And after mentioning these Boot Camps, Martin Ericson teaches a CWNA-109, and Raymond Hendrix teaches a LoRaWAN Boot Camp together with Troy Martin.)

But what is this training:
This training aims to teach how many of the standards-based security functions in Wi-Fi work. In addition, we look at the Basics that enable these features. With that, the amount of theory will be extensive.
Where possible, we have labs where we capture the communication and analyze it in Wireshark for everything that we learned.

Reviewing the agenda, you also find legacy technology like WEP and TKIP. For a good understanding, I think it is essential to know where we came from to evaluate where we are and where we are going.

The agenda for this training is the following (but it still could change slightly):

  • Introduction
  • 802.11-Security
  • Basic WLANs
  • Captive Portals
  • Cryptography Basics
    • Symmetric cryptography
  • WEP
  • WPA/WPA2
  • Cryptography Basics
    • Asymmetric cryptography
  • SSL/TLS
  • Certificate Basics
  • 802.1X, EAP, RADIUS
  • WPA2-Enterprise
  • various EAP methods like EAP-MD5, PEAP, EAP-TLS, EAP-TTLS, …
  • RADIUS Security
  • Fast BSSID Transition, 802.11r
  • MFP
  • WPA3
    • WPA3-SAE
    • WPA3-Enterprise
    • WPA3-Transition
  • OWE
  • Wireless IDS/IPS

I hope to meet in Prague and see many of you in my Boot Camp.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.