logo
Mobile
Smartphones
Tablets
Smartwatch & Wearables
Telco
PC
Laptops
Monitors, Input Devices & Accessories
PC Components
Storage
Networking & Security
Lifestyle
Audio
Video
Photography
Smart Home
AI
Cars
Apps & Software
Entertainment
Gaming & Culture
TV & Movies
Guides
How To
Tips
DealsEditor's Picks
Follow Us
Connect with us and stay updated with the latest news and promotions from us! Sign up now!
PC | Networking

5 Steps to Secure Your Home with a Mesh Network

We take a look at some home network security considerations and how a mesh network can make things easier.
#cybersecurity #networksecurity #meshnetwork #datasecurity

By Ken Wong - 

(This guide is Part 1 of seven in our Cybersecurity Safety Content Basics Special.)

Quick Tips: What are five steps to secure my home network?

1) Upgrade to a mesh network and keep it up-to-date 

Set your mesh to auto-update as new firmware versions usually include new security fixes.

2) Change your default router login credentials, SSID, and create a strong network password 

It’s safer to have different passwords for your wireless network and admin password. Please don’t leave them to their default settings.

3) Turn on any firewall and encryption capabilities 

Firewalls filter data in network traffic to protect the network from a wide variety of malicious attacks and malware. Encryption is the process of converting sensitive information into a secure code that cannot be read without the decryption key. If your network comes with firewall and encryption capabilities, please do not turn them off.

4) Implement WPA3 or WPA2 on the wireless network

WPA2 is an encrypted security protocol that protects internet traffic on wireless networks. it addresses flaws of earlier protocols and offers more powerful encryption. WPA3 will be the dominant standard for wireless security moving forward and it's more secure than WPA2, bringing enhanced security and protection.

5) Implement guest network segmentation 

A guest network gives visitors access to your Internet connection and nothing else. They can't see any of your devices on the network and they don't have the ability to access them. Most importantly, they can't accidentally introduce malware or compromise your devices or data in any other way. So segmenting your network enhances your overall security policy. By limiting users' access privileges, you are safeguarding the network and devices against cyberattacks and improving network performance by reducing user density.

The headaches of securing one's home network 

Image source: Pixabay.

Image source: Pixabay.

Home network security is the protection of your home Wi-Fi-enabled network and the devices connected to it. These could be routers, computers, smartphones, and Wi-Fi-enabled baby monitors and cameras, within your home.

But many home users feel that because they aren’t a business or only have a few connected devices, they don’t need to worry about cyberattacks.

Unfortunately, big or small, home or business, if a device connects to the internet, it is at risk of attack. Devices like smartphones, tablets, and Internet of Things (IoT) devices (think of smart security cameras) have all increased the burden on the security we use over our network. 

A determined attacker can leech off your Internet, introduce malware onto your devices, steal your data, or hijack your Wi-Fi router and use it together to launch a cyberattack on a business or government agency.

These days, one possible way to address network security concerns is to improve its visibility over connected devices and its manageability by adopting a mesh network over the use of a traditional router.

What is a mesh network?

Unlike traditional routers are singular, centralised access points, a mesh network creates a single network using multiple devices. A traditional router acts as a central hub for Internet connectivity. Traffic requests from devices go through a router as a single access point. A mesh network is particularly useful in solving the problems of dead spots in homes. It gives homes the ability to have multiple access points (nodes), and these access points can cooperate to expand Wi-Fi coverage. This leads to seamless roaming so as you move around your home, your device will automatically connect to the strongest signal without you having to do a thing.

Traditional routers usually need a range extender to repeat the signal so a Wi-Fi connection can reach even further. However, even the best Wi-Fi extenders require you to create a separate network (with a separate name) for the range extender. This means you usually must manually switch Wi-Fi connections as you move through the house.

Is a mesh network more secure than a non-mesh?

Thanks to many vendors having mobile apps, setting up a mesh network is usually a breeze. The whole process of worrying about network settings and managing your network is handled through the app. This means you can easily set your network to update its firmware settings automatically, so you always have the most up-to-date security information. 

Traditional routers can do much of the same, but you would typically need to connect to the local network using a desktop browser to configure them. If you've more than one of them, you'll have to mange them separately, adding to the complexity in keeping them updated and ensuring they work in your setup without a flaw after updating them.

 

How do I know what devices are on my network?

Many mesh router apps allow users to quickly scan their speeds, cut off Wi-Fi access to certain networks, create guest networks, test the quality between various connection points and even connect to smart home devices. One other thing you can do on the app is to check the devices that are currently connected to my mesh network. Depending on the app it can be under “Connected Devices” or “Devices”. Simply click the option and a list of connected devices will show up allowing you to turn off network access or manage the time the device has internet access (handy for the parents out there). 

Should I run a guest network along my main?

Most mesh networks allow you to run a guest network alongside your main network. The difference is that it generally restricts what those connected to the guest network can do. For example, while it gives visitors access to your Internet connection, it restricts everything else.  They can’t see or access any of your devices on the network. Most importantly, they can’t accidentally introduce malware or compromise your devices or data in any other way.

CLS certified hardware: Another tool to bolster your home network security 

For those who are truly concerned about their network security, one other factor to consider is CLS-certified hardware whose standards were outlined by the Cyber Security Agency of Singapore (CSA). The first of its kind in the region, the CSA rates smart devices according to their levels of cybersecurity provisions. Cyber Security Labelling Scheme, or CLS in short, allows consumers to identify products with better cybersecurity provisions and was first introduced to cover Wi-Fi routers and smart home hubs. There are four rating levels to this certification scheme:-

  • Level 1 - The product meets basic security requirements such as ensuring unique default passwords and providing software updates.

     
  • Level 2 - The product has been developed using the principles of Security-by-Design such as conducting threat risk assessment, critical design review and acceptance tests, and fulfilled Level 1 requirements.

     
  • Level 3 - The product has undergone assessment of software binaries by approved third-party test labs, and fulfilled Level 2 requirements.

     
  • Level 4 - The product has undergone structured penetration tests by approved third-party test labs and fulfilled Level 3 requirements.

Consumers can easily check out a manufacturers level of certification for its products here. For example, this ASUS Tri-Band Wi-Fi 6E Mesh System has achieved CLS Level 2 certification meaning that the product has met all mandatory security requirements of international standards, and has fulfilled Level 1 requirements (it has met basic security requirements such as ensuring unique default passwords and providing software updates). 

The following video covers what goes into CLS certification and why it makes a difference to your home security.

YouTube video player


Can my broadband vendor assist in undertaking some network security aspects?

Depending on your broadband service provider, some may offer a managed network security solution to reduce the burden of security concerns and offer you and your households some peace of mind:-

While this article is just a primer for cybersecurity safety, it belongs to a 7-part series of articles for consumers to take easy, actionable steps to better prepare against online security threats and what you can do to stay safe. Stay tuned as we roll out more stories over the next few days.

Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.

Tags

securitycybersecuritymesh networkconsumer security specialcybersecurity basics
Share this article