📋
Operational security for activists
  • Home - Operational security for activists
  • Mobile phone security
  • Secure digital communication
  • Email, online banking, and social media security
  • Running a pseudonymous social media account
  • WiFi security
  • Virtual Private Networks (VPNs) and Tor
  • Editing images for security
  • Laptop security
  • How the government tracks your location
  • Talking to journalists
  • Glossary
  • Further reading
Powered by GitBook
On this page
  • Avoid connecting to unsecured or potentially-untrustworthy WiFi networks.
  • Only connect to unsecured WiFi networks if you have a Virtual Private Network (VPN).
  • Watch out for WiFi networks with weak security.
  • Check the certificate when connecting to an enterprise WiFi network.
  • Remember that connecting to the Internet might prompt programs on your computer to automatically send data.

WiFi security

This describes how to connect to WiFi networks while keeping some semblance of privacy.

PreviousRunning a pseudonymous social media accountNextVirtual Private Networks (VPNs) and Tor

Last updated 4 years ago

Avoid connecting to unsecured or potentially-untrustworthy WiFi networks.

In addition to , your adversary may have also set up WiFi networks intended on tracking you or eavesdropping on your connection when you use them. To avoid this, only connect to secured WiFi networks run by an operator that you can trust.

Only connect to unsecured WiFi networks if you have a Virtual Private Network (VPN).

When you connect to a WiFi network without password, you should assume that none of your traffic is private. These unsecured networks are commonly offered at Starbucks and other coffee shops. It is best to avoid them unless you are also using a .

Watch out for WiFi networks with weak security.

WEP and WPA are the names of two WiFi security standards that are considered weak in modern times. WPA2 Personal and WPA2 Enterprise are currently the standards of choice.

Check the certificate when connecting to an enterprise WiFi network.

Major WiFi networks run by corporations, universities, and governments are typically secured with a certificate. The first time you connect with these networks, you should check the certificate to see if it is legitimate. The IT department that runs WiFi network can provide you with instructions on how to do this.

Remember that connecting to the Internet might prompt programs on your computer to automatically send data.

Many computer programs periodically make connections to remote servers. These connections may de-anonymize you and reveal your locations. Some programs that do this include:

  • Mail clients that periodically check for new mail.

  • Proprietary programs that check a central server to make sure that you paid for the program.

  • Software that sends a bug report to the developer whenever it crashes.

  • Malware that connects to a command-and- control server to receive new instructions and to send your personal information.

Virtual Private Network (VPN)
fake cell phone towers