Upload
cuthbert-berry
View
214
Download
0
Embed Size (px)
Citation preview
AirDefense’s Role in Wireless Security
Hotspot
Corporate Network
Barcode Scanner
Authorized AP
Authorized Station
Hacker
Probing Laptop
Rogue AP
Hacker
Confidential Data
Guards Your Wireless Deployments and Areas without Wireless Protects End-Users
as They Travel
Rogue Threat Management & Mitigation
Detect Rogue Devices / Associations Hardware APs, Soft APs, Wireless ready laptops Specialty Devices Ad-hoc networks/ Accidental/ Malicious
Associations NEW: Rogue detection over the wire
without requirement for sensors
1
Calculate Threat Index Threat-based Management NEW: Two additional rogue on network
detection methods Partitioning of Friendly Neighboring Networks
unless they become malicious
2
Analyze Rogue Connections In-depth analysis of the activity
level of each rogue Who was connected to the rogue What/ how much data transmitted NEW: 270 forensic details per device
per minute
3Locate Rogue Devices
Real-time accurate location tracking of all devices4
Terminate Rogue Devices Policy-based & manual termination Via air or port suppression NEW: Follow devices as they roam
5
Highest Risk
Innocent Neighbor AP
Least Risk
Connection to Neighbor AP
Rogue AP inmy building
Connection toRogue AP &
transferring data
Rogue APon My
Network
“What I love about the latest version of AirDefense is its ability to pinpoint if a rogue is on my network and the ability to do something about it immediately.”
…. provides the peace of mind from knowing that we can identify & eliminate all unsanctioned laptops, APs, ad hoc networks & application-specific wireless devices.
University of UtahHealth Sciences Center
AirDefense Product FamilySensors Enterprise Server
32 4
Wireless LAN Analyzer Bluetooth AnalyzerMobile Worker Security
6
Site-Survey Tool
5
Complete end-user wireless protection regardless of location
Real-time snapshot of local wireless networks
Security for Bluetooth devices
In-field measurements of 802.11 environments
Accurate, pre-deployment design and simulation of W LANs
WLAN Design & Simulation
1• Rogue Detection, Analysis & Mitigation• Wireless Intrusion Prevention• Operational Support
Wireless LAN Security & Monitoring
AirDefense Solution
AirDefense Functionality
RF Rewind with Forensic Analysis
Rogue Threat Management& Mitigation
360º Threat Assessment &
Response
Policy Monitoring &
Compliance Management
Operational Performance & Troubleshooting
MobileWorkforceProtection
Vulnerability Assessment
AirDefense IntelliCenter
Mobile Workforce Protection
AirDefense Personal
Policy Profiles
1. Policy Profiles are centrally defined & automatically downloaded each mobile user
2. Alert Logs automatically uploaded to AirDefense Enterprise and central reporting & notification
3. Policy Enforcement (automatic turn-off radio)
AirDefense Personal is a small software agent that runs on Windows laptops, monitors for wireless exposures, and notifies the user and AirDefense Personal Central Manager.
AirDefense Enterprise Appliance
Alert Logs Turn OFF Radio
Continuous protection for mobile users on the road or at their office Ensure that wireless protocols prohibited by your policy are not used
“The best way to prevent this is to download free software from a company called AirDefense. The software will let you know if someone is trying to rip off your wireless information.”
“Mobile users could get duped by hackers phishing for credentials or other sensitive information at hotspots and must be protected.”
Mobile Workforce Protection
Sort agents by user name, threat
level or group
Enterprise-wide Threat Level
Summary
Policy Violations Summary
Alarms Summary
Push Policy profile to
individual users
Agent
Central Manager
AirDefense BlueWatch
Monitors air space for Bluetooth devices & their activities to identify security vulnerabilities
Runs on Windows XP and 2000 platforms
Versions for Laptops & PDAs available
FEATURES
Identifies different types of Bluetooth device (E.g. Laptops, PDAs, keyboards and cell phones)
Provides key attributes of device (E.g. device class, manufacturer and signal strength)
Illustrates communication or connectivity among various devices
Identifies services available on each device including network access, fax and audio gateway
FUNCTIONALITY
Device by Type
Detailed Device Info
"Many of our new company-issued devices are Bluetooth enabled. Although this is a convenience for many of our associates, there is a risk that sensitive data may be compromised. AirDefense BlueWatch provides a monitoring solution that we can use to identify and track how and with whom these devices communicate.”
AirDefense Mobile
Real Time Device Discovery & Connection Analysis Advanced Rogue Management with Threat Indicators Real-time Threat Detection & Alarm Expert Help Advanced Location Tracking Live View for Traffic Analysis Wireless Network Usage Statistics & Health Analysis Capture file playback for off-site analysis and reporting Advanced Diagnostics tools for Troubleshooting
Detect Analyze Locate
Import Authorized Device List from Enterprise to Mobile
Synchronization of authorized & rogue wireless devices for specified locations
Rogue Device Information can be imported for problem resolution & device tracking
Integrated with AirDefense Enterprise
Device Tree
Device Count
Signal Strength
Top Devices & Channels
Frames & Bytes Transferred
“… allows us to perform security & performance audits to know exactly what is happening within our wireless domain enabling us to distinguish a rogue connected to the internal network from a benign one."
Cost-Optimized, Mobile Security Tool
AirDefense Architect
Import Floor plansStep 1 Matl. CharacteristicsStep 2 3D BuildingStep 3
Simulation & OptimizationStep 4
Complete 3D RF design & simulation of WLANs based on building specific environments
Industry leading accuracy to optimize AP & sensor coverage
Compare site-survey measurements to expected network performance, enabling real-time design modifications
Avoid costly retrofits, minimize deployment costs & increase ROI
Rapid WLAN Design & Management
AirDefense Survey
Site-survey software for measuring the Wi-Fi RF environment
Stores and displays collected measurements within a site-specific model of the facility or campus
For all detectable access points, Survey measures: Signal strength (RSSI), Noise levels, SSIDs,
Channels Provides rich graphical displays of measurements overlaid
onto the map Built on AirDefense Architect’s 2D/3D site-specific
modeling and WLAN design technology Available for Microsoft Windows PCs, and uses off-the-
shelf Wi-Fi PCMCIA cards as the measurement receiver
Wireless Site Surveys Made Easy
Measured data collected by AirDefense Survey can be used by AirDefense Architect to further improve simulation accuracy
Integration with AirDefense Architect