Wireless vulnerability management is a continuous process of appraising a network’s wireless threat exposure followed by appropriate remediation. After taking steps to repair and close the holes in the network, the network should be scanned again for vulnerability assessment. This follow-up scan will complete the vulnerability management loop. Comparing the pre- and post-remediation reports will help confirm if the network threat exposure has been indeed reduced to an acceptable level.
Airspace Risk Assessment: Know your environment Wireless security begins by first gaining visibility into the wireless presence (active wireless devices) in your airspace and assessing the potential risk it poses. The next measure is then to identify your authorized networks (SSIDs) and classify your authorized devices. This classification is a prerequisite to an accurate wireless vulnerability assessment.
Wireless Vulnerability Assessment: Knocking on Your Wireless Backdoor Wireless intrusion detection and prevention is reactive: attacks are detected and dealt with after they occur. Wireless vulnerability assessment is proactive: instead of waiting for a malicious hacker to break into a network, the network is scanned for vulnerabilities before they can be exploited. In essence, it provides a third-party evaluation or a “hacker’s eye view” of a network’s exposure to wireless threats.
An effective wireless vulnerability assessment solution should:
- Automatically scan for all known vulnerabilities enabling zero-day attack protection
- Accurately detect and locate existing and potential vulnerabilities without false positives
- Create an inventory of critical assets and unauthorized devices in the airspace
- Present the scan results in a concise, but informative report that classifies vulnerabilities, prioritizes them according to well-defined severity levels, summarizes the main findings, and recommends remedial actions
- Compare reports generated at different times
- Map wireless vulnerabilities in the context of the relevant regulatory compliance
We recommend:
Product: SpectraGuard®
AirTight Networks delivers wireless intrusion prevention as either onsite products (SpectraGuard® Enterprise) or subscription based services (SpectraGuard® Online), which gives customers the ability to monitor their airspace, protect their network and customer data from wireless threats and security breaches and a choice in how to manage it.
AirTight’s patented technology delivers the key elements of an effective WIPS to eliminate false alarms, block wireless threats automatically and instantaneously, and locate wireless devices and events with pinpoint precision. AirTight is the only company to offer a purpose-built, proactive WIPS with state of the art 802.11n sensors to provide comprehensive security from all 802.11n threats that is backward compatible with existing 802.11abg wireless networks.
AirTight’s customers include global retail, financial services, corporate, education and government organizations.
Secure wireless scanner configuration and deployment
Features | Benefits (Click on each feature to find out more)
- Granular Location Tracking of Rogue Devices
SpectraGuard can locate rogue devices
(including DOS attackers) with pinpoint accuracy that allows administrators
to minimize the time required to find them in a large deploy- ment. AirTight
also provides accurate heat maps for RF troubleshooting as well as advanced
event and packet level troubleshooting capabilities. All the above functionalities
are provided while minimizing administrator’s burden to manage our WIPS
system on a day to day basis to address Wireless threats.
- Support for 802.11n Technology
AirTight provides a comprehensive
portfolio that helps protect, plan and optimize 802.11n networks. Its products
allow organizations to carefully design their 11n infrastructure deployment
as well as to protect it against 11n wireless threats. The dual radio 11n
sensor platform can detect, prevent and remediate all 802.11n wireless vulnerabilities
and is backward compatible with existing a/b/g networks. Even if your company
does not deploy 802.11n, an 802.11n rogue or network threat can still occur
and you need visibility into that threat scenario.
- Lower Cost of Ownership
AirTight offers advanced capabilities
such as RF Heat Maps and troubleshooting functionality, Advanced Forensics
functionality as part of its base product without charging extra; whereas
competitive products charge separate license fees for the same capabilities.
- Ease of Use and Deployment
The administrative-console help system
can accommodate four different skill levels, from beginner to expert. Because
of this, Gartner recognized SpectraGuard as a “lean-back” or easy
to administer approach to WIPS in its 2008 MarketScope report –
“(AirTight’s) product is easy to set up and it avoids false alarms by using multiple checks to classify rogues, offers capable, easy-to-use, attack classification and alert prioritization, with a good reporting console and is well-suited for buyers that are looking for an easy-to-deploy solution.”
AirTight minimizes the deployment complexity and ongoing administrative burden with this approach for WIPS implementation and provides the best TCO for WIPS deployment when compared to competitive products.
“(AirTight’s) product is easy to set up and it avoids false alarms by using multiple checks to classify rogues, offers capable, easy-to-use, attack classification and alert prioritization, with a good reporting console and is well-suited for buyers that are looking for an easy-to-deploy solution.”
AirTight minimizes the deployment complexity and ongoing administrative burden with this approach for WIPS implementation and provides the best TCO for WIPS deployment when compared to competitive products.
- Tight Integration with Wireless LAN Infrastructure
Customers using a Cisco Wireless
LAN can take advantage of SpectraGuard’s tight integration with the
Cisco Wireless LAN Controller (WLC), allowing them to automatically import
list of authorized APs and clients from the Cisco controller into SpectraGuard,
leverage Cisco APs as additional sensors watching the airspace which reduces
the number of sensors required for location tracking. Additionally, AirTight
supports Event Management integration with Syslog, ArcSight, and Checkpoint
OPSEC.
- Deployment Flexibility
In addition to SpectraGuard Enterprise
— a complete WIPS solution where an appliance is hosted on a customer
site, AirTight offers a wireless security SaaS solution, SpectraGuard Online
— a modular hosted service with subscription-based pricing. The customer
has the choice of both CAPEX and OPEX purchasing options and can purchase
full WIPS capabilities or modules for assessment, compliance, and remediation.
- Accurate Detection and classification
Airtight SpectraGuard can accurately
detect & classify all wireless threats to your wired and wireless LAN
while minimizing false positives. Our robust over-the-air prevention techniques
can mitigate all Wireless threats. We also provide comprehensive forensic
data for incident analysis provided as part of our “Live Event”
architecture.
Multiple/Different Wlan Security Policies for Different Regions of the Globe
Find out more...
Download
Datasheets | Make
an enquiry