AirDefense’s Role in Wireless Security

Hotspot

Corporate Network

Barcode Scanner

Authorized AP

Authorized Station

Hacker

Probing Laptop

Rogue AP

Hacker

Confidential Data

Guards Your Wireless Deployments and Areas without Wireless Protects End-Users

as They Travel

Rogue Threat Management & Mitigation

Detect Rogue Devices / Associations Hardware APs, Soft APs, Wireless ready laptops Specialty Devices Ad-hoc networks/ Accidental/ Malicious

Associations NEW: Rogue detection over the wire

without requirement for sensors

1

Calculate Threat Index Threat-based Management NEW: Two additional rogue on network

detection methods Partitioning of Friendly Neighboring Networks

unless they become malicious

2

Analyze Rogue Connections In-depth analysis of the activity

level of each rogue Who was connected to the rogue What/ how much data transmitted NEW: 270 forensic details per device

per minute

3Locate Rogue Devices

Real-time accurate location tracking of all devices4

Terminate Rogue Devices Policy-based & manual termination Via air or port suppression NEW: Follow devices as they roam

5

Highest Risk

Innocent Neighbor AP

Least Risk

Connection to Neighbor AP

Rogue AP inmy building

Connection toRogue AP &

transferring data

Rogue APon My

Network

“What I love about the latest version of AirDefense is its ability to pinpoint if a rogue is on my network and the ability to do something about it immediately.”

…. provides the peace of mind from knowing that we can identify & eliminate all unsanctioned laptops, APs, ad hoc networks & application-specific wireless devices.

University of UtahHealth Sciences Center

AirDefense Product FamilySensors Enterprise Server

32 4

Wireless LAN Analyzer Bluetooth AnalyzerMobile Worker Security

6

Site-Survey Tool

5

Complete end-user wireless protection regardless of location

Real-time snapshot of local wireless networks

Security for Bluetooth devices

In-field measurements of 802.11 environments

Accurate, pre-deployment design and simulation of W LANs

WLAN Design & Simulation

1• Rogue Detection, Analysis & Mitigation• Wireless Intrusion Prevention• Operational Support

Wireless LAN Security & Monitoring

AirDefense Solution

AirDefense Functionality

RF Rewind with Forensic Analysis

Rogue Threat Management& Mitigation

360º Threat Assessment &

Response

Policy Monitoring &

Compliance Management

Operational Performance & Troubleshooting

MobileWorkforceProtection

Vulnerability Assessment

AirDefense IntelliCenter

Mobile Workforce Protection

AirDefense Personal

Policy Profiles

1. Policy Profiles are centrally defined & automatically downloaded each mobile user

2. Alert Logs automatically uploaded to AirDefense Enterprise and central reporting & notification

3. Policy Enforcement (automatic turn-off radio)

AirDefense Personal is a small software agent that runs on Windows laptops, monitors for wireless exposures, and notifies the user and AirDefense Personal Central Manager.

AirDefense Enterprise Appliance

Alert Logs Turn OFF Radio

Continuous protection for mobile users on the road or at their office Ensure that wireless protocols prohibited by your policy are not used

“The best way to prevent this is to download free software from a company called AirDefense. The software will let you know if someone is trying to rip off your wireless information.”

“Mobile users could get duped by hackers phishing for credentials or other sensitive information at hotspots and must be protected.”

Mobile Workforce Protection

Sort agents by user name, threat

level or group

Enterprise-wide Threat Level

Summary

Policy Violations Summary

Alarms Summary

Push Policy profile to

individual users

Agent

Central Manager

AirDefense BlueWatch

Monitors air space for Bluetooth devices & their activities to identify security vulnerabilities

Runs on Windows XP and 2000 platforms

Versions for Laptops & PDAs available

FEATURES

Identifies different types of Bluetooth device (E.g. Laptops, PDAs, keyboards and cell phones)

Provides key attributes of device (E.g. device class, manufacturer and signal strength)

Illustrates communication or connectivity among various devices

Identifies services available on each device including network access, fax and audio gateway

FUNCTIONALITY

Device by Type

Detailed Device Info

"Many of our new company-issued devices are Bluetooth enabled. Although this is a convenience for many of our associates, there is a risk that sensitive data may be compromised. AirDefense BlueWatch provides a monitoring solution that we can use to identify and track how and with whom these devices communicate.”

AirDefense Mobile

Real Time Device Discovery & Connection Analysis Advanced Rogue Management with Threat Indicators Real-time Threat Detection & Alarm Expert Help Advanced Location Tracking Live View for Traffic Analysis Wireless Network Usage Statistics & Health Analysis Capture file playback for off-site analysis and reporting Advanced Diagnostics tools for Troubleshooting

Detect Analyze Locate

Import Authorized Device List from Enterprise to Mobile

Synchronization of authorized & rogue wireless devices for specified locations

Rogue Device Information can be imported for problem resolution & device tracking

Integrated with AirDefense Enterprise

Device Tree

Device Count

Signal Strength

Top Devices & Channels

Frames & Bytes Transferred

“… allows us to perform security & performance audits to know exactly what is happening within our wireless domain enabling us to distinguish a rogue connected to the internal network from a benign one."

Cost-Optimized, Mobile Security Tool

AirDefense Architect

Import Floor plansStep 1 Matl. CharacteristicsStep 2 3D BuildingStep 3

Simulation & OptimizationStep 4

Complete 3D RF design & simulation of WLANs based on building specific environments

Industry leading accuracy to optimize AP & sensor coverage

Compare site-survey measurements to expected network performance, enabling real-time design modifications

Avoid costly retrofits, minimize deployment costs & increase ROI

Rapid WLAN Design & Management

AirDefense Survey

Site-survey software for measuring the Wi-Fi RF environment

Stores and displays collected measurements within a site-specific model of the facility or campus

For all detectable access points, Survey measures: Signal strength (RSSI), Noise levels, SSIDs,

Channels Provides rich graphical displays of measurements overlaid

onto the map Built on AirDefense Architect’s 2D/3D site-specific

modeling and WLAN design technology Available for Microsoft Windows PCs, and uses off-the-

shelf Wi-Fi PCMCIA cards as the measurement receiver

Wireless Site Surveys Made Easy

Measured data collected by AirDefense Survey can be used by AirDefense Architect to further improve simulation accuracy

Integration with AirDefense Architect