What Is WEP Wi-Fi Encryption? Here’s Why You Should NOT Use It
Whatsapp Pinterest
Advertisement

You’ve probably heard in the past how dangerous WEP encryption is, and that you shouldn’t use it on your home network. What is WEP, and why do people advise against using it?

Let’s break down what WEP means and all of the flaws that come with it.

What Is WEP?

WEP stands for “Wired Equivalent Privacy,” and it’s one of the early-day security protocols for Wi-Fi. When you use Wi-Fi, your computer sends packets of data to your router. If these packets aren’t encrypted, hackers can peek at them and see the data within. This tactic is known as a Man-in-the-Middle What Is a Man-in-the-Middle Attack? Security Jargon Explained What Is a Man-in-the-Middle Attack? Security Jargon Explained If you've heard of "man-in-the-middle" attacks but aren't quite sure what that means, this is the article for you. Read More (MitM) attack.

If the packets are encrypted, then anyone performing a MitM attack on the network will see what you’re sending. That’s what WEP solved; it encrypted your data so people couldn’t peer into the packets.

Why Is WEP Insecure?

To understand WEP’s major flaw, let’s imagine a company that produces puzzle books. These books are renowned for being filled with incredibly tricky puzzles which require a lot of computational power to solve. Due to the extreme difficulty of the book, people like to collaborate to solve the puzzles.

The writers of the book want to fill it with enough content so that they can publish another one before the readers complete the current edition. If the general public solves the book before the book publishers release a new one, they have to get a new book out ASAP.

The Strength of Each Puzzle Book

We can break down the “strength” of each book by these properties:

  • The complexity of the puzzles. If the puzzles are harder to solve, the readers take more time to crack them. In the first few editions of the book, the puzzles were quite hard; however, after seeing how readers cracked previous editions, the puzzle setters have made them more devious over the years.
  • The number of puzzles. As the puzzle setters get better at making puzzles, they can also fit more puzzles into each book as time goes on. This then extends the time needed to solve the book.
  • The number of people who buy the book. If only one person buys the book, they’ll take a very long time to finish it. Conversely, if one thousand people buy it, the time it takes to solve a book shortens drastically.

From these three properties, you can make a rough estimate of how long it will take to solve a whole book. For example, if it takes a month for one person to solve one puzzle, and the book contains a thousand puzzles, it’ll take a dedicated team of one hundred people to solve the book within 10 months. As such, the next book should be ready to go before 10 months has passed.

This does mean that the older the puzzle book, the higher the chance that it’s solved already. This is especially true for the first few editions of books, which contains easier and fewer puzzles than later versions.

Why WEP’s Age Works Against It

In the same vein, WEP’s age makes it an insecure choice for encryption. It was the first protocol created for Wi-Fi, it has been out since 1997, and millions of people have used it since then.

From the puzzle book example, WEP would be the very first puzzle book to be released and fully solved. People on the internet can easily find tools that can break open WEP security, much like how people could search all the answers for the first puzzle book.

How Hackers Crack WEP Security

A WEP password generator app on an iPhone
Image Credit: opturadesign/DepositPhotos

The main problem with WEP is that it only uses one static key when sending data from your computer. This wasn’t a problem when WEP first arrived; however, as time went on, hackers cracked the code behind the keys. As such, once a hacker knows the key for your Wi-Fi communication, they can break the encryption and read the data you’re sending.

Of course, a hacker can’t just apply a key and hope for the best—there are lots of WEP keys your computer can pick. However, hackers can keep an eye on the packets and monitor patterns in the encryption. Then, they work out what key fits the profile and crack the code.

It’s now at the point where people can download tools which automatically do this for them. They point the program toward a WEP-enabled network and leave it to monitor the pattern and crack the password by itself. As such, using a WEP-based connection in this day and age is very dangerous.

Does WEP See Use Today?

If WEP came out in 1997, then surely everyone has upgraded their networks by now?

Unfortunately, WEP is still around on some ancient systems. Usually, this is because someone set up a system a long time ago, and the people who run it are unaware of the security risks that arise if you don’t upgrade.

As long as the system runs as it should, the organization won’t feel the need to upgrade. Some businesses are still using Windows XP, after all!

What to Do If You Use WEP Security

A router to represent upgrading from WEP
Image Credit: nito103/DepositPhotos

If you use WEP on your home network, you’re at risk of people snooping on your connection. As such, it’s worth upgrading to a stronger network protocol to keep people out.

Ideally, you’re on the lookout for a router that supports WPA2. WPA2 is a secure protocol that’s tougher to crack than WEP. It’s not perfect, but it’ll secure your network a lot better than WEP.

If you feel like spending a little extra, you can buy routers with WPA3 enabled, which is even stronger; however, at time of writing, WPA3 is still an emerging protocol and may cost you extra for the luxury.

Alternatively, if you find your current router’s signal gets unstable at long distances, you can use this opportunity to purchase a long-range model. Be sure to take a look at the best long-range Wi-Fi routers The 7 Best Wi-Fi Routers for Long Range and Reliability The 7 Best Wi-Fi Routers for Long Range and Reliability Experiencing Wi-Fi network issues at home? You might need a new router. Here are the best Wi-Fi routers for long range at home. Read More for some ideas.

Securing Your Wi-Fi Network With Security Protocols

While WEP used to be secure, hackers chipped away at its defenses over time. Now, WEP is at the point where a budding hacker can download a tool that does all the work for them. If you use WEP, it’s a good idea to upgrade your security and avoid MITM attacks.

If all these security protocol names make your head spin, why not learn about the WEP, WPA, WPA2, and WPA3 Wi-Fi security types WEP vs. WPA vs. WPA2 vs. WPA3: Wi-Fi Security Types Explained WEP vs. WPA vs. WPA2 vs. WPA3: Wi-Fi Security Types Explained There are many types of wireless security but which should you be using? Which Wi-Fi is most secure: WEP, WPA, WPA2, or WPA3? Read More ?

Explore more about: Computer Networks, Computer Security, Encryption, Network Tips, Online Security, Router, Wi-Fi.

Enjoyed this article? Stay informed by joining our newsletter!

Enter your Email

Leave a Reply

Your email address will not be published. Required fields are marked *

  1. vibhashsinha
    May 3, 2019 at 7:23 am

    Your Article was very Informative. But you have done a sentence mistake on 4th para(1st line), (Now imagine if most people knew that this particular kind of door could be easily opened) there must be kind of lock instead of door.

    Thanks me later bro!!!

  2. anonymous
    January 2, 2015 at 1:37 am

    WEP is so stupid. I went to my cousins house they have WEP and i came with my 4 year old mini laptop with kali linux and i cracked their key ( it's very long) in under 2 minutes. i was able to connect with the key i cracked. btw i'm just 12 years old

    • Shaoul
      October 3, 2019 at 10:36 am

      dear Anonymous-12 years, most probably your parents met thanks to a wep-wifi

  3. Ron Lister
    February 11, 2013 at 5:10 pm

    Security is good, I see Muo has a some other articles on the subject I'll be readingthose as well. Thanks for the article Justin. Even now that card companies are more strict on security you still here about the crooks sucking up creditcard data even from places like parkinggarages. I just think no mater what secure means we come up there is a crook who will find a way to beat it. wish there was a way to detect the intrusion.

  4. Keith Swartz
    February 7, 2013 at 11:58 pm

    Great article! It is definitely about a subject, SECURITY, we should all be concerned about. Thank-you for shining a light upon it.

  5. Prajjwal Rao
    February 6, 2013 at 6:29 pm

    thanks now i understand everything... the hassle i went through before was bad.... now its clear... thanks really!

  6. Bilal
    February 6, 2013 at 6:28 pm

    I use WPA2 with 15 characters, is it safe or should I use more characters?

    • Alberto Lerma
      February 7, 2013 at 8:05 am

      As long as your password isn't a word or something like: "AAAAAAAAAAAAAAA" I think you're ok but you'll never be 100% secure, for example: Most routers contain something called WPS (sometimes there's a button on the front). WPS makes life easier by allowing you to connect devices without the lenghty password. But it create a big security hole as WPS is hackable with some tools like Reaver in 4 hours.

      So, if your router let you, deactivate it (it might require some advance knowledge and in many routers it can't be done) ASAP.

      • Mihovil Pletikos
        February 7, 2013 at 7:53 pm

        or better install open-wrt or something similar....

        • Alberto Lerma
          February 10, 2013 at 2:42 am

          Yes good point, totally forgot about it. 1 like for you.

  7. Rigoberto Garcia
    February 6, 2013 at 5:47 pm

    Great article Justin. Thanks...

  8. Florin Ardelian
    February 6, 2013 at 5:24 pm

    I'm sorry, but the idea of attempting to name your wireless to prevent hackers is just plain silly. It's the same as using the door with the lock which can be opened by credit cards (and everyone recognizes the lock by just looking at your door), while taping a paper with "Police station" written in Comic Sans on said door.

    That kind of advice is very dangerous, because there will always be those who will take it seriously and they will gain a false sense of security. Whoever has enough knowledge to use a WEP cracking tool is not fooled by a network named "IWillHackU" and no matter how clearly you explain it to people, there will always be some who will just not get it.

    • Justin Pot
      February 6, 2013 at 5:31 pm

      Like I said: it's seriously time to replace your router. Do that.