In regard to Wireless networks, has anybody come accross a WLAN audit program (not a security assessment).
I’m interested in discussing what an EDP auditor may look at when performing such an audit. For example what kind of the following controls may be tested:
-High level controls
-Specific controls
-Detective/monitoring controls
-Preventive controls
-Corrective controls
There are some security assessments docs. around the net, however interesting they overlook an audit methodology, and go straight to the using tools like netstumbler….
Cheers,
