Wi-Fi Security — WEP, WPA2, WPA3 and Public Wi-Fi
Is 'free Wi-Fi' really free?
- Compare WEP, WPA2 and WPA3
- List three risks of public Wi-Fi
- State three rules for safer Wi-Fi use
Overview
Wi-Fi encryption has evolved through three main generations. WEP was cracked over 20 years ago and should never be used. WPA2 is still common but has known weaknesses. WPA3 is the current standard and much harder to attack. Public Wi-Fi adds a second problem: even if the encryption is fine, anyone on the same network can try to attack your device.
WEP, WPA2, WPA3
WEP: broken, avoid. WPA2: acceptable with a strong password, but vulnerable to some offline attacks. WPA3: strongest, protects even weak passwords with SAE (Simultaneous Authentication of Equals).
Public Wi-Fi Risks
Rogue hotspots (evil twin), packet sniffing on open networks, and captive-portal phishing pages.
Safer Rules
1) Prefer mobile data or a personal hotspot for banking. 2) Use HTTPS everywhere. 3) Use a reputable VPN when on untrusted Wi-Fi. 4) Turn off auto-connect to unknown networks.
Router Check
- Look at your home router (or the classroom one with the teacher).
- Find out which Wi-Fi security mode it uses.
- If it is WEP or Open, discuss what should be changed and how.
- Which Wi-Fi standard is currently the strongest?
Reveal answer
WPA3.
- Give one risk of connecting to open café Wi-Fi.
Reveal answer
Evil-twin hotspots, packet sniffing, or captive-portal phishing.
- How does a VPN help on public Wi-Fi?
Reveal answer
It encrypts all your traffic between the device and a trusted server, hiding it from the local network.
Write 3 rules you will follow the next time you use public Wi-Fi.