Based on WebJunction members' input for our Focus on Wireless Internet Access in Public Libraries, here are a few top concerns:

• Does a wireless network put internal library systems at risk?
• Does a wireless network put patrons' personal computers at risk?
• Should I require patrons to have a password to get wireless access?
• Where can I learn more about wireless security?
• Do we need to provide CIPA filtering for wireless computing?
• What about exposure to radiation from a wireless network?

Does a wireless system put internal library systems at risk?

It is necessary to take steps to create a separation between your internal system and your patron-oriented wireless network.  Some considerations:

• Many libraries are choosing to keep the wireless connection completely separate from internal systems, either by obtaining a completely separate Internet connection for patron wireless access (sometimes from a different Internet service provider), as in the case of the Missoula (MT) Public Library.  Another option is to route the access directly to the external Internet connection (outside the library's internal firewall)--that's the approach taken by the Carrollton (TX) Public Library and the Emporia (KS) Public Library.
• If your library network has hardware that supports virtual local area networks (VLANs), you can set up virtual network segments that are separate from one another.  See this WebJunction article for background information on this technology.
• For a detailed description of how the Brevard County (FL) Libraries handled a complex security situation, read this post on the web site for PublicIP, an open source wireless hotspot solution (and take a look at this section of their forum, devoted to libraries).

Does a wireless system put patrons' personal computers at risk?

Libraries avoid guaranteeing that patrons' personal computers will be completely safe from intrusions when they are using the library's wireless network.   Most wireless policies include a disclaimer something like the following:"The library assumes no responsibility for the safety of equipment, or for laptop configurations, security, or data files resulting from connection to the library's network."

Should I require patrons to have a password to get wireless access?

• Some libraries do issue passwords to patrons on a per-use basis: Randy Nelson of the Blackfalds (AB) Library provides details on his approach;  another example is the St. Charles (IL) Public Library. 
• Some allow anyone to use their system, any time (for example, the Hennepin County (MN) Library, Live Oak Public Libraries [Savannah, GA], and the Teton County (WY) Public Library).

Where can I learn more about wireless security?

• TechRepublic has a detailed set of resources on wireless security, including a list of Top Five Don'ts.  It's not specific to libraries, but there is much good information here (free registration required for access to many of the articles).  The state of Maine has a modest but growing collection of wireless security resources.
• Aruba Wireless Networks offers a free online seminar with a security consultant about wifi security.  Recognize that this is a vendor's point of view--on the other hand, the seminar title, "Wifi for the Scared Guy," may be enough to make it worth taking a look!
• And library network maven Marshall Breeding speaks about wireless security at WebJunction's live event on Thursday, July 21, from 3-4:30pm ET (registration is limited, so enroll now--and the event will be archived on WebJunction).  Marshall also has a forthcoming Library Technology Report on Wireless Technologies in Libraries that will include good information on security.

Do we need to provide CIPA filtering for wireless computing?

According to the CIPA FAQ put together by Robert Bocher of the Wisconsin Department of Education:

An increasingly popular option in libraries is to allow patron owned laptops to access the Internet through the library's wireline or wireless network.  CIPA references the need for the library to have a TPM in place, "with respect to any of its computers with Internet access [emphasis added]."  It is very reasonable to assume that "its" refers to the library's PCs and that patron laptops need not be filtered.  Officials at a federal agency have indicated, off the record, that they agree with this assumption.

Based on this logic, however, if you decide to lend patrons your own notebook computers (see, for example, the Vineland (NJ) Public Library), these computers would need to be filtered to comply with CIPA.

The library technology blog TechnoBiblio includes a post discussing the issue of CIPA and patron wireless computers, which points to this WebJunction article with more thoughts from Bob Bocher.  Library Journal notes varying opinionson the subject. 

Both the Public Library of Charlotte-Mecklenburg County (NC) and St. John the Baptist Parish (LA) Library state in their wireless policies that their wireless access points are "filtered to comply with CIPA regulations."  Also interesting are June, August, and September 2004 minutes from the Richland (WA) Library Board, which provide a useful glimpse into a library's process for determining filtering policy as it relates to wireless computing.  The Richland Library's decision was to prohibit patrons under the age of 17 from using wireless computers in the library.

What about exposure to radiation from a wireless network?

This tangled and controversial topic is a subset of the larger debate about the safety of electromagnetic radiation in general (including cellular phones and microwaves) safety.  A "radio frequency safety" FAQ (last updated in 2002) is available from the FCC at http://www.fcc.gov/oet/rfsafety/rf-faqs.html, and a FAQ on cellular phones (last updated in 2003) is available from the FDA at http://www.fda.gov/cellphones/qa.html.  The EMR Policy Institute disputes the US government's position and provides its own FAQ.

The St. Charles (IL) Public Library wireless FAQ states: "No, the wireless network does not pose any health risk. It uses radio signals within the spectrum of safety. While there will always be controversy over the safety of exposure to radio signals, it is something we are exposed to whether we have a wireless network or not."

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 2.5 License.