Grade 11 ITC · Term 4 · Digital Security Textbook
Unit 2 · Protective Measures · Chapter 14

Wi-Fi Security — WEP, WPA2, WPA3 and Public Wi-Fi

Week 5 · Day 2 · Benchmark 11.4.2.2 Apply protective measures including authentication, updates and backups
Essential question

Is 'free Wi-Fi' really free?

Learning objectives
  • Compare WEP, WPA2 and WPA3
  • List three risks of public Wi-Fi
  • State three rules for safer Wi-Fi use

Overview

Wi-Fi encryption has evolved through three main generations. WEP was cracked over 20 years ago and should never be used. WPA2 is still common but has known weaknesses. WPA3 is the current standard and much harder to attack. Public Wi-Fi adds a second problem: even if the encryption is fine, anyone on the same network can try to attack your device.

WEP, WPA2, WPA3

WEP: broken, avoid. WPA2: acceptable with a strong password, but vulnerable to some offline attacks. WPA3: strongest, protects even weak passwords with SAE (Simultaneous Authentication of Equals).

Public Wi-Fi Risks

Rogue hotspots (evil twin), packet sniffing on open networks, and captive-portal phishing pages.

Safer Rules

1) Prefer mobile data or a personal hotspot for banking. 2) Use HTTPS everywhere. 3) Use a reputable VPN when on untrusted Wi-Fi. 4) Turn off auto-connect to unknown networks.

Activity

Router Check

  1. Look at your home router (or the classroom one with the teacher).
  2. Find out which Wi-Fi security mode it uses.
  3. If it is WEP or Open, discuss what should be changed and how.
Review questions
  1. Which Wi-Fi standard is currently the strongest?
    Reveal answer

    WPA3.

  2. Give one risk of connecting to open café Wi-Fi.
    Reveal answer

    Evil-twin hotspots, packet sniffing, or captive-portal phishing.

  3. How does a VPN help on public Wi-Fi?
    Reveal answer

    It encrypts all your traffic between the device and a trusted server, hiding it from the local network.

Take it home

Write 3 rules you will follow the next time you use public Wi-Fi.