I never assume any form of electronic communication is secure.
Since all my servers are Windows 2008 R2, and my clients are running Windows 7, I’ve set SSTP as my standard VPN protocol.
My campus uses Cisco Anywhere Connect, which is OpenSSL, almost the same thing.
WPA has been hackable for quite a while with free tools. Wireless is not secure.
I keep saying I am going to wire for ethernet and give up my tablet, but it’s like a crack addict trying to stop crack for me, evidently.
I just love being able to surf on my ipod & tablet. Dang it.
I wish infrared had made it big... I could install local infrared access points in each room, and be reasonably secure (there is still the issue of light leakage through windows and such, but it would take professional equipment to access that reliably, and a position which I could easily detect a hacker in).
I think the sum total is this: wireless encryption needs to get A LOT BETTER.
Maybe I will setup a VPN which my wireless devices have to access to get to the internet.
I recently implemented an IPSEC host to host capability for a customer. It uses IKE and AES crypto. Both AH and ESP elements. The only down side was network performance is cut in half. Using signed certs for the authentication gives you the ability to lockout unauthorized use bia a CRL.