Evidence of my concerns has recently been published in a research paper from two German researchers, Martin Beck and Erik Tews.  The paper describes how the Chopchop WEP attack can theoretically be applied to WPA-TKIP, and includes proof-of-concept code.

So how do we protect our data from these methods?  There are a few solutions for the time being, but it’s only a matter of time before they are also defeated.  The first solution is to use AES protocol instead of TKIP.  The second is to upgrade from WPA to WPA2.

Some other methods for securing a wireless network are as follows:

1. Change the default admin login details on wireless access points.
   Most hackers/crackers know the default login details for popular devices.  Changing those details is the first line of defense.
2. Change the default SSID on wireless access points.
   Like the admin login details, most hackers/crackers know the default SSIDs for popular devices.
3. Disable SSID Broadcasting on wireless access points.
   Broadcasting the name of your access point equates to announcing that you have an available WiFi signal.  Authorized users should already know the name, so it’s not necessary to announce it to the world.
4. Setup a LAN access list so that only specified devices can connect to wireless access points.
   Although MAC addresses can be spoofed, this provides another layer of security.  In order to connect to the network, a hacker/cracker would have to match the MAC address to one of the devices that have been mapped out in the access point.  It’s like searching for a needle in a haystack.
5. When not in use, disconnect wireless devices from the network.
   If wireless devices aren’t connected to the network, they can’t be compromised.