I never, ever leave my credit card out where people can easily take it. So why would I leave my data unprotected?

Unfortunately, many people do just that every time they use their mobile devices. The rapidly growing base of mobile users is drawing the attention of hackers, who use a variety of schemes to get at your data and personal information.

We all need to wise up and take measures to safeguard our mobile data. Let's take a look at how to be secure in some common situations that you'll likely encounter when you're on the road.

1.  In a hotel room that offers both a Wi-Fi and an Ethernet connection, which should I choose?

Because Ethernet is a wired connection, it's natively more secure than Wi-Fi. Data goes from your laptop via an Ethernet cable to a hub located in the hotel room and then on to the Internet service provider (ISP) via a cable. A hacker needs to attach directly to the Ethernet system to have any possibility of compromising your data, which means that he or she must have physical access to the facility. A hacker equipped with an Ethernet sniffer could connect to the system from another hotel room and monitor your data traffic, depending on the configuration of the system.

With Wi-Fi connections, data typically is sent unencrypted through the air between the mobile device and an access point near your room, making it very easy for hackers to sniff the data passively from as far away as the parking lot. That's not good, unless you implement proper security safeguards (refer to question #2 for more details). If you pay close attention to securing your network connection, then Wi-Fi is very secure.

By the way, you'll almost always find that Ethernet provides faster performance, mainly because most public Wi-Fi networks have lousy signal coverage. Low signal levels cause data rates and corresponding data throughput to be much lower than Ethernet. Wireless, however, allows mobility throughout the hotel room and other parts of the hotel.

For me, it's worth implementing additional security mechanisms in order to make use of Wi-Fi when staying at a hotel. I like the ability to relax from anywhere in the room and still access e-mail and the Web. In addition, Wi-Fi is generally available in other parts of the hotel, such as in the restaurant, bar, lobby, and convention area. You can pay for one day's service (or get it free at some hotels) and continue using Internet-based applications wirelessly after checking out of the room and, for example, attending a meeting in the convention center. Thus, Wi-Fi usually offers more value than Ethernet.

Of course, most hotels offer either Ethernet or Wi-Fi, not both, so you may not have a choice. Still, you could find out what a hotel offers before scheduling your trip and book according to your preferred connection type.


2.  If I choose a Wi-Fi connection from a public facility, how do I ensure that the data is secure?

This is where you need to put on your tech hat to properly secure mobile data. Be very careful, because data sent over public Wi-Fi networks is usually totally insecure unless you take proactive security measures. Public networks do not provide encryption between your mobile device and nearby access points, so it's up to you to implement a form of end-to-end encryption between your laptop and the server that you're communicating with.

Ensure that your e-mail login and e-mail transfer use SSL (Secure Sockets Layer) encryption. If not, hackers can read your e-mails as they're flying through the air. To do this, ask for help, either from your organization's help desk or from your software vendor.

Only use secure (SSL) Web sites when placing credit card orders over the Internet. Most sites offer SSL, but not all of them. Without a secure site, you're broadcasting credit card numbers to potential hackers in the area. You'll know you are using a secure site if a little icon that looks like a lock appears on the status bar of your Web browser.

When accessing corporate servers and applications, use VPN (virtual private network) client software on your mobile device. (Most larger companies require the use of VPNs when employees use Wi-Fi and Ethernet public networks.) The VPN client communicates with the corporate server and encrypts everything on an end-to-end basis. Thus, hackers sniffing the air for your data packets won't be able to read anything intelligible.

Maybe you don't work for a company that has VPN services? If this is true, then consider a for-hire VPN service. This is a good way to get on board with wireless security if your company isn't quite there yet.