Expanding the web's potential for people with disabilities

Getting Started

Introduction to web accessibility

WebAIM Training

May 21-22
Training Details

From the Blog

Community

You are here: Home > TEITAC Archives > Mailing List Archives

Thread Subject: Fw: What are the security provisions for wireless?

Note

This archival content is maintained by WebAIM and NCDAE on behalf of TEITAC and the U.S. Access Board . Additional details on the updates to section 508 and section 255 can be found at the Access Board web site.

Return to this mailing list's archives

From: terry.weaver@gsa.gov
Date: Mon, Aug 06 2007 11:30 AM
Subject: Fw: What are the security provisions for wireless?

Below is the response I received regarding security provisions for
wireless. Does anyone know if there are any possible conflicts between SP
800-48 and a possible accessibility functional performance requirement for
people without reach, strength or mobility to access a kiosk.

----- Forwarded by Terry Weaver/MEC/CO/GSA/GOV on 08/06/2007 01:17 PM
-----

Lee A. Ellis/MEB/CO/GSA/GOV
07/18/2007 12:00 PM

To
Mary J. Mitchell/ME/CO/GSA/GOV@GSA
cc
"David Temoshok" < = EMAIL ADDRESS REMOVED = >, Marion A.
Royal/MEB/CO/GSA/GOV@GSA, Terry Weaver/MEC/CO/GSA/GOV@GSA
Subject
Re: What are the security provisions for wireless?

Terry,

Q. Are there approved standards by NIST that have encryption to prevent
unauthorized use?

A. Yes. NIST has been very active in the WiFi space. The 800 series of
NIST publications are centered on Computer and Network security.

SP 800-48 is the best publication for explanation and knowledge. (802.11
Wireless Network Security - NIST SP 800-48). It does get into encryption
modules, VPN usage and reference of FIPS 140-2. There is also device
testing through NIST for WiFi products.

Wireless Security is a business in itself, usually associated with the
banking community.

**Please note that there are specific guidance to Bluetooth and Bluetooth
Security Hardening**. This does not cover WiFi security and normally does
not meet all of the IEEE 802.11 criteria).

Lee Ellis
Office of Technology Strategy (ME)
Information Architecture and Strategies Division
(202) 501-0282 Cell (202) 253-6448

6455

Are there approved standards by NIST that have encryption to prevent
unauthorized use? We are discussing the inclusion of a functional
performance criteria to address how a user with severe mobility disability
might be able to use public kiosks or ATMs if he/she cannot physically
attach a piece of assistive technology.

This is also a concern with voting machines.

WebAIM is an initiative of: