The Center for Internet SecurityThe Center for Internet Security Site MapContact UsPrivacy Policy
The Center for Internet Security
HomeNewsWhat is CIS?Benchmarks/ToolsOther ResourcesJoin UsTestimonialsFAQ
CIS Members site

Become a Member of CIS - Click here for more info

More than 170 members, from around the wrold! Click here for more info

Get Involved - Click here for more info



CIS certifies commercial software. Click here for more info

CIS licenses resources for commercial use. Click here for more info.

click here to find out about CIS trademarks.

Click here to find out about upcoming conferences and events!

 Benchmarks/Tools
CIS Benchmark for Wireless Infrastructure - Click Here to Download Them
- FAQ - The Benchmarks
April 2005:

The Wireless Benchmark (v1.0) is now available! The current version is intended for 802.11 network infrastructures.

NOTE: Due to the complexity and wide variety of wireless infrastructure products, CIS will not be producing a scoring tool for this benchmark.  
The Download Files Include:
  • CIS_Wireless_Benchmark_v1.0.pdf - the Benchmark document contains detailed instructions for implementing secure policies and configurations on a wireless network.
  • CIS_Wireless_Addendum_Cisco.pdf - addendum to the CIS_Wireless_Benchmark_v1.0.pdf document that includes specific actions to implement the CIS recommendations on Cisco hardware.
  • CIS_Wireless_Addendum_Linksys.pdf - addendum to the CIS_Wireless_Benchmark_v1.0.pdf document that includes specific actions to implement the CIS recommendations on Linksys hardware.
  • CIS_Wireless_Addendum_DLink.pdf - addendum to the CIS_Wireless_Benchmark_v1.0.pdf document that includes specific actions to implement the CIS recommendations on DLink hardware.
  • CIS_Wireless_Addendum_Apple.pdf - addendum to the CIS_Wireless_Benchmark_v1.0.pdf document that includes specific actions to implement the CIS recommendations on Apple hardware.
In addition to the benchmark files above, the following are also available.
From the authors:
The growing popularity of wireless networks combined with the well-publicized vulnerabilities in their security implementation poses a threat to every enterprise network. To address these in a comprehensive manner we need to prepare a multi-level security methodology, using both free and commercial tools. It must include ad-hoc procedures for identifying and locating potential intrusions as well as an automated system of secure network access control and active quarantining of virus-infected clients. The products and utilities are readily available but combining them for bulletproof security requires a thorough analysis of the threats leading to a solid strategy and proven best practices.
  • CIS_Wireless_Assessment_v2.0.pdf - Practical steps and guidelines for assessing wireless network security, including descriptions of several "tools of the trade."
  • CIS_Wireless_Assessment_Example_v2.0.pdf - Real world example of the important of proper and throrough wireless network assessment.
What is the Benchmark?
The Benchmark is a compilation of security configuration actions and settings that "harden" wireless networks. It is specifically designed for environments where security is of the utmost concern, even at the expense of some functionality. CIS refers to this as the "Specialized Security - Limited Functionalty" level. As such, care must be taken when implementing these recommendations. Thorough functionality and impact testing is highly recommended.
Share Your Feedback
We value your feedback, which may be used both to update and further define the Wireless the Benchmark security configuration recommendations.  Please direct your technical feedback to:
The CIS Feedback Email Address
Please direct other feedback to:
Bert Miuccio, Vice President
For more information about the CIS consensus process and the benchmarks, go to What are the Benchmarks? and FAQ - The Benchmarks.  
Updates to the Benchmark
The CIS Wireless Benchmark will be updated periodically.  Continuous feedback from CIS Members and other users assures that the consensus standard of minimum due care is always reflected in the recommended settings. 

 Revision histories can be found in the benchmark documents.  One of the benefits of CIS Membership is electronic notification when updates become available. 

Click Here for more information about membership.  If your organization is not a member of the Center, visit this website periodically to assure that you are using the latest version of the Wireless Benchmark.

Click Here to see what Members say about The Center for Internet Security.

DOWNLOAD the CIS Benchmark for Wireless Networks



Logo and Design by Keiler
© 2005, the Center for Internet Security.