I understand from Lyndel in another thread the reasons why Philips haven't implemented WPA in the latest revisions to the TSU9600 but I'm still disappointed and remain concerned about the security of my network.

I've downgraded to WEP and added MAC address filtering but these are very flimsy security measures.

I'd be grateful to hear of any tips for improving the security of my PC and data while running my TSU9600 and RFX9600.

TIA. John.

You might try to add an extra acces point which only does WEP and has only limited acces to other PC's in the network. You could keep WPA for purposes that need more security. I can not help on how to configure this setup, but probably others can,...

WJ

Thanks Wim - I'd be glad to try this if anybody can help with the configuration....

My opinion others here may not necessarily agree,

I believe the best way to set this up if you must use the networking option is to isolate the equipment to its own network segment, with NO/NONE/ZERO access to your pc. Especially if you have any banking or personal information on the machine. When its time to upgrade firmware temporarily connect the pc.

WEP and MAC address filtering have been cracked and spoofed.

Philips needs to resolve the WPA issues they have, even my pocket pc does WPA and its 1/5 the size of this remote.

The problems that Philips identified with WPA were
- authentification can take a long time and it was undesirable to have users wait 30 seconds or more to get commands transmitted to the extender.
- the extra data transmitted with WPA was causing the battery to drain quicker

it is something that needs addressed and fixed....IMO

Can you tell me please how to set that up. What is a "network segment"?

You could also consider using an Access Point that has two virtual wireless networks. One can be set for WEP suitable for the Pronto components, and the second with WPA for the wireless PCs. Some WAPs do exist that have this feature and with isolation between the network segments.

A dual virtual wireless network avoids the problems of having to setup two or more seperate WAPs with the attendant problems of RF channels overlaps etc.

You could also consider using an Access Point that has two virtual wireless networks. One can be set for WEP suitable for the Pronto components, and the second with WPA for the wireless PCs. Some WAPs do exist that have this feature and with isolation between the network segments.

A dual virtual wireless network avoids the problems of having to setup two or more seperate WAPs with the attendant problems of RF channels overlaps etc.

Still not a perfect solution since the WAP security is invested in a single device that might be possible to compromise.