Friday, March 9, 2007

Free Wi-Fi in Hong Kong

I travel with my mobile device, and get email with GPRS, the 2.5G mobile phone service. It is cheap and not very fast, but quite suitable for text-based messages. The device also has wi-fi function for Internet browsing, so I can check wi-fi hotspots wherever I go. Wi-fi is quite common nowadays. We use it at home and most telecommunication services now provide extensive wi-fi coverage in Hong Kong at a fee.

When I travelled to Israel last month, I obtained free wi-fi service both at the Hong Kong Airport as well as the Tel Aviv Airport. Many hotels I stayed also offered wi-fi service at a small fee on a hourly or daily basis. Wi-fi is both a business and a public service on citizens' right to information. It is not a surprise to read the following announcement that the Hong Kong Government is going to offer free wi-fi service at government buildings and public places.

(明報) 03月 07日 政府免費無線上網料快可實行
工商及科技局局長王永平說,預料下半年開始,政府設施和場地將會陸續出現免費的無線上網服務。他表示,預算案中提出以二億元提供無線上網,目的是讓香港成為區內的領先電訊城市。構思中的計劃是在一年之內,讓所有政府場地、圖書館、社區會堂、政府辦公大樓向市民提供免費的上述服務。但屆時會有過濾設施,不能登上色情和不雅的網站。王永平又稱,為配合這個安排,也會讓私營電訊商增加設施,方便市民無線上網,務求使香港成為先進的電訊城市。他表示,年中將會向立法會財委會申請撥款,預計下半年可陸續出現有關服務。

With more and more free wi-fi hotspots at convenient locations, there is tremendous pressure on the business of the internet service providers and other telecommunication service providers. I envisage that free Internet service will become more common with the service providers turning to advertisement revenue instead of subscription fees from clients.

However, free wi-fi service means more data transmitting freely on radio frequency. This poses serious threat to data security: a good subject for managers of information technology. I read from CNet an article on "Your Wi-Fi can tell people a lot about you". If you are interested, please take a look.

Almost all new personal computers in various form factors are now equipped with wi-fi function. The article reveals the fact that as soon as such computers power up, they start looking for wireless networks and network services. Shortly after start-up, computers typically broadcast the previous Internet Protocol address and details on networked drives or devices such as printers that it tries to connect to. Even if the wireless hardware is then shut-off, someone may already have caught interesting data. Much more information can be plucked out of the air if the computer is connected to an access point, in particular an access point without security. For a computer using Windows, it will emit upon startup the list of wireless networks the PC has connected to in the past. The list can be used to determine where a laptop computer has been used.

There are many tools that let anyone listen in on wireless network traffic. These tools can capture information such as username and password for e-mail accounts and instant message tools as well as data entered into unsecured Web sites. At the annual Defcon hacker gathering, a speaker demonstrated the technique to exploit the loophole by capturing log-in credentials of the participants from radio signals of wi-fi network at the venue.

These are bits of friendly information, but in the hands of the wrong person, they could help attack the computer owner or network. Furthermore, the information could be useful to intelligence organizations. If the computer is then connected to a wireless network, particularly the unsecured type at hotels, airports and coffee shops, much more can be gleaned. The advice of the expert is: The best solution is to be aware of the danger, and everyone doesn't need to work from a coffee shop. When I used the free wi-fi service at the airports, I only browsed for news. Online banking and other personal services are done at home.

2 comments:

  1. hi raymond,

    i work for the english media here in hong kong, and i would like to approach you for something. very much related to this post of yours. where can i email you? thanks very much.

    cheers,
    t

    ReplyDelete
  2. You can follow the link at the top of page to go to my website.

    ReplyDelete