SpectraGuard Enterprise FAQs
Overview
What is SpectraGuard Enterprise?
Because of widespread proliferation of wireless devices,
every corporate network has to deal with wireless vulnerabilities, even if
wireless is not officially deployed.
SpectraGuard Enterprise is an end-to-end wireless vulnerability management solution needed for today's global enterprise. It extends the trusted wireless intrusion prevention (WIPS) capabilities originally offered by AirTight. SpectraGuard Enterprise is suitable for large customers who want to purchase the wireless security equipment and host it at their site.
Why should I buy SpectraGuard Enterprise?
If you are interested in a wireless vulnerability
management solution that is hosted privately at your site, you should consider
SpectraGuard Enterprise. You can purchase and own the wireless security
equipment outright.
What are the capabilities of SpectraGuard Enterprise?
SpectraGuard Enterprise capabilities include all steps
involved in the wireless vulnerability management lifecycle. SpectraGuard
Enterprise offers three service modules:
Vulnerability Assessment
Scan your network for wireless threats. SpectraGuard
Enterprise automatically scans, detectsand classifies all unauthorized access
and rogue traffic to your network. Generates global wireless vulnerability
assessment reports with 1-click
Regulatory Compliance
Meet all your wireless compliance requirements for
regulatory standards such as PCI, SOX, HIPAA, GLBA and others. Simplify the
reporting process with user-friendly predefined reports.
Vulnerability Remediation
Take proactive action against any wireless security threat
by blocking it and removing it by accurately locating it on your floor map with
the most precise location tracking solution. This capability includes all
features of wireless intrusion prevention (WIPS) originally provided by
AirTight.
Is there an alternative to SpectraGuard Enterprise?
An alternative to SpectraGuard Enterprise is to perform the
wireless vulnerability assessment manually. You can take a handheld or laptop
based scanner and walk around through all global locations in your organization.
This process is time-consuming, expensive and not repeatable. It also requires
wireless expertise.
Instead, with SpectraGuard Enterprise, you can generate the global wireless vulnerability assessment reports with a single mouse click.
How do I choose between SpectraGuard Enterprise and
SpectraGuard Online?
Both SpectraGuard Enterprise and SpectraGuard Online
solutions deliver a comprehensive set of features for wireless vulnerability
management and wireless security.
SpectraGuard Enterprise is the solution for you if:
- You have a capex budget
- You are interested to purchase and own the wireless security equipment
- You are planning an extremely large wireless security deployment
SpectraGuard Online is the solution for you if:
- You have an opex budget
- You want to start with a small wireless security deployment and grow gradually
- If you want a pay-as-you-go monthly pricing
My wireless vendor provides me with security features.
Do still I need SpectraGuard Enterprise?
Yes. SpectraGuard Enterprise performs wireless
vulnerability assessment and compliance in an unbiased, independent and
vendor-agnostic manner. It looks at your overall wireless security posture
without considering the wireless network provider.
If you believe that there should be a separation between
the solution providing the “wireless network” and the solution conducting a
“wireless security audit”, you should consider SpectraGuard Enterprise.
If you believe in this separation between the “church” and
the “state”, then you should consider an independent solution.
How does the 30-day free-trial work?
The
30-day free trial of SpectraGuard Enterprise comes with absolutely no
financial obligation. We want to you feel comfortable with the value provided by
SpectraGuard Enterprise. You can use the trial period to conduct a wireless
vulnerability assessment and to understand the features of SpectraGuard
Enterprise.
Wireless Scanning
Will wireless scanning cause disruption in my network?
No. Wireless scanning will not cause any disruption in your
network. SpectraGuard Enterprise conducts a passive wireless scan.
Can SpectraGuard Enterprise work with any wireless
access points or client devices?
Yes. SpectraGuard Enterprise is wireless vendor agnostic.
It performs wireless vulnerability assessment and compliance in an unbiased,
independent and vendor-agnostic manner.
Do I need to add software to my wireless access points
or my client devices?
No. There is no need to add software to your access points
or client devices. SpectraGuard Enterprise can be installed without changing the
configuration of your wireless network infrastructure.
My entire wireless network is installed outside of
enterprise firewall. Am I safe from wireless security threats?
No. This configuration only makes sure that intruders
cannot gain access through authorized wireless APs. However, your network is
still vulnerable to other wireless security threats such as rogue access points,
mis-configured access points, denial-of-Service attacks and authorized clients
accidentally connecting to external access points. You must protect your network
against such wireless security threats.
My wireless network is installed behind a VPN. Do I need
SpectraGuard Enterprise?
Yes. VPN will only stop intruders from gaining access
through authorized wireless APs. VPN will not provide protection from other
wireless security threats such as rogue access points, mis-configured access
points, denial-of-Service attacks and authorized clients accidentally
connecting to external access points. You must protect your network against such
wireless security threats.
Can I monitor my wireless security from a remote Network
Operations Center (NOC)?
Yes. You can monitor your wireless security on a 24x7 basis
from a NOC. The NOC can be located anywhere in the world. Wireless scanners have
to be placed at the facility being monitored for security.
Reports
What reports can SpectraGuard Enterprise generate?
SpectraGuard Enterprise can generate various wireless
vulnerability assessment reports that assess the overall wireless security
posture of your organization. Additionally, it can generate regulatory
compliances reports for PCI, SOX, GLBA, HIPAAand DoD Directive 8100.2. You can
also define custom compliance reports to support additional regulatory
requirements.
What are the supported output formats for reports?
Reports can be generated in either in HTML or XML format.
PDF format will be supported in the future.
Can I generate reports on-demand?
Yes, you can generate reports on-demand. When you select a
report for immediate generation, this report either opens in another browser
window (HTML format) or is saved as a file (XML format).
Can I schedule the reports to be automatically generated
and delivered?
Yes, you can schedule reports for automatic generation and
delivery via email. When you select a report for automatic generation and
delivery, you can schedule either a one-time delivery or a recurring delivery of
report.
Wireless Scanner (Sensor) Deployment
What are Sensors?
Sensor is a popular name for our Wireless Scanner. They are
small devices with wireless antennas and an Ethernet port. These sensors are
plugged into your network ports that have access to the Internet. They transmit
the scan data to the SpectraGuard Enterprise server where wireless security data
is processed.
Why are Wireless scanners needed?
Wireless scanners (sensors) are needed to scan the wireless
environment in your organization. Wireless scanners scan the wireless activity
in your environment and transmit the scan data to the SpectraGuard Enterprise
server where wireless security data is processed .
How easy is it to deploy Wireless scanners?
Wireless scanners (sensors) are deployed in zero
configuration mode. Configure your DNS name ‘wifi-security-server’ to point to
the SpectraGuard Enterprise server IP address. If you will see all its 4 LEDs go
green, it means that the wireless scanners are able to communicate with the
SpectraGuard Enterprise server successfully,.
Wireless scanners support Power-over-Ethernet (PoE, 802.3af). Wireless scanners can be placed on your desk or on a cubicle wall. Optionally, you can also mount it on the wall or ceiling using an optional bracket accessory.
How many Wireless scanners should I deploy?
You should deploy a wireless scanner (sensor) in each
location where a wireless scan is required. Each wireless scanner can scan about
20,000 sq. ft of moderately populated area. Typically they should be evenly
distributed on the floor. If the floor area is larger or crowded then you may
need more wireless scanners to adequately scan the location.
You can also use our security planning solutions to plan wireless scanner deployment.
Is Wireless scanner placement important?
Yes. You must place the wireless scanners (sensors) such
that together they provide full air cover to the entire floor.. Each wireless
scanner can scan about 20,000 sq. ft of moderately populated area. Normally, you
can get air cover by evenly distributing them on the floor. You can also see the
scanner coverage in the “Locations” view of SpectraGuard Enterprise.
If you are interested in accurate wireless scanner placement, visit our security planning solutions page.
