Wireless Security and WLAN whitepapers
Airport wireless network scan

Archived - White Papers


Surviving Airborne Threats with Wireless Intrusion Prevention

As Wi-Fi adoption grows, so do the stakes. Cyber-criminals are drawn to high-value targets like the enterprise servers and corporate data now reachable via wireless. New airborne threats continue to emerge, exploiting misconfigured networks, promiscuous devices, and naïve users. From on-site employees and guests to off-site travelers and teleworkers, all companies today face some degree of Wi-Fi exposure. To safely reap the business benefits of Wi-Fi, we must move beyond weak first-generation deterrents like Wired Equivalent Privacy and passive Wireless Intrusion Detection Systems (WIDS). Surviving Airborne Threats requires a proactive, effective defense that incorporates both Wi-Fi Protected Access and an automated, accurate Wireless Intrusion Prevention System (WIPS). This paper examines the key differences between WIDS and WIPS, criteria that should be considered when choosing a WIPS, and the competitive advantages of AirTight SpectraGuard Enterprise.

Five-Step Plan for Securing your Enterprise WLAN

Wi-Fi misuse, abuse, or attack can cause financial harm, including direct costs associated with investigation, response, down-time, and recovery; indirect losses due to decline in competitiveness and market value; and directed remedies and penalties caused by non-compliance with data privacy regulations. An effective network defense now requires the ability to control all wireless activity that impacts your business. This paper decomposes the challenge of securing an enterprise wireless LAN (WLAN) into five essential steps. From safeguarding wireless clients and data to auditing and controlling Wi-Fi connections, this paper recommends best practices to ensure the safety and integrity of today's enterprise networks.

The Impact of Wireless LAN Technology on Compliance to the PCI Data Security Standard

The Payment Card Industry (PCI) Data Security Standard was created in 2004 to help consumers maintain confidence in the privacy of their personal data and transactions when using credit cards. Compliance is mandatory for all merchants that store, process or transmit credit card data through retail stores, mail order, telephone order and e-commerce.

The Business Justification for Wireless Intrusion Prevention

More and more companies are realizing that their corporate air waves are an asset that requires protection. Strong security policies have been created for wired networks - protection systems such as firewalls, IDS, anti-virus and anti-spam systems are put in place and policies are monitored for compliance. The same is now needed for the corporate air waves. This paper will discuss the compelling business reasons why an investment in wireless intrusion prevention should be made.

Supercharging the Security of Your Cisco Aironet Wireless LAN

Wireless LAN security issues were first addressed by Cisco well before new IEEE 802.11i standards were put in place to help enterprises maintain confidence in and productivity gains from their Cisco wireless network. However new Wi-Fi threats endanger not just the wireless LAN, but also the wireline corporate infrastructure, leading Cisco to team with AirTight Networks to deliver a world class wireless intrusion prevention system (IPS) to their Cisco Aironet customers. As a Wireless Alliance member of the Cisco Technology Development Partnership Program, AirTight Networks integrates seamlessly with the Cisco Aironet solution extending its useful life and value while maintaining state-of-the art security. This application note discusses how adding AirTight Networks SpectraGuard Enterprise to your existing Cisco Aironet wireless LAN installation significantly improves your enterprise security.

Best Practices for Securing Your Enterprise Wireless Network

Making corporate data accessible through Wi-Fi networks means intruders and other unwanted visitors can easily access such networks if proper precautions and tools aren't used to protect them. In addition, the enterprise wired network itself is subject to unauthorized access without proper precautions. There are five fundamental areas which must be considered when securing the enterprise against wireless threats.

  • Creating a wireless security policy
  • Securing the enterprise wireless LAN
  • Securing the enterprise wireline (Ethernet) network
  • Securing corporate laptops from wireless threats when outside the enterprise
  • Educate employees regarding the wireless policy

This paper will discuss best practices in all five areas to secure the enterprise network, whether wired or wireless, from unauthorized use and hackers.

Wireless Security and Healthcare - Going Beyond 802.11i to Truly Ensure HIPAA Compliance

Wireless LANs are prevalent in healthcare institutions. The constant need for mobility among doctors, nurses and staff while remaining connected to clinical information systems is a natural environment for Wi-Fi networks. However, with wireless LANs comes a new security risk. Many healthcare IT organizations are unaware of the need for properly securing the wireless LAN and using secure over-the-air encryption and authentication methods such as WPA and WPA2. However, this alone is not enough to prevent security risks. Rogue access points and client mis-associations can cause loss of integrity of confidential patient data, violating HIPAA guidelines. This whitepaper describes how the AirTight SpectraGuard Enterprise Wireless IPS can be implemented to protect against these threats and ensure compliance to HIPAA.

The New Threat to Enterprise Security - Wi-Fi

With the rapid adoption of Wi-Fi networks by enterprise IT departments everywhere, network security now involves an entirely new dimension of vulnerability to malicious hackers and casual intruders. Applications and data have literally taken to the airwaves, thanks to the compelling productivity and efficiencies gained by mobility tools such as notebook PCs, handhelds and Blackberries. The downside is that making corporate data accessible through Wi-Fi networks means intruders and other unwanted visitors can easily access such networks if proper precautions and tools aren't used to protect them. Conventional network firewalls, VPNs and 802.11 security standards do not prevent everyday Wi-Fi threats such as rogue access points, unauthorized client connections and ad hoc networks or more malicious hacking threats like honey pot APs, MAC spoofing and denial of service (DoS) attacks. This paper discusses a new class of solution, the Wireless Intrusion Prevention System (WIPS), is now available to complement wired security solutions such as VPNs and firewalls, providing complete protection of an enterprise’s air space and thus their trusted wire-line network.

WLAN Security - Why Your Firewall, VPN and IEEE 802.11i Aren't Enough to Protect Your Network

While many enterprises now realize the security threats posed by a wireless LAN deployed without the proper security features, most do not realize that this is not enough to protect the enterprise from further danger. Enterprise networks are vulnerable due to security threats posed by the presence of these devices, irrespective of whether the enterprise has an officially deployed WLAN or not. What many managers do not realize is that conventional firewalls, VPNs, and security mechanisms in the 802.11 standard are unable to alleviate these threats.

Written for executives and IT managers, this white paper describes these new security threats from wireless LANs and desirable features of a new type of security system - a Wireless IPS to prevent them.

Planning IEEE 802.11 Wireless Networks for Security and Coverage

IEEE 802.11 based Wireless Local Area Networks (also known as WLAN) are gaining widespread acceptance for the convenience and flexibility they offer to the end users. Embedding of wireless technology into laptops, PDAs and phones has significantly increased the user base of WLAN devices. It is anticipated that 95% of the laptops and notebook computers sold in Y2005 will have embedded WLAN. Number of mobile users is anticipated to grow several folds over next four years with many of them being WLAN users.

WLAN planning poses new set of challenges to network planners and designers due to invisibility of RF signal propagation and the need to protect against an entirely new class of security threats arising from the use of WLANs. Many corporations have in fact banned WLAN due to these security threats.

On this background, this white paper extensively covers important topics such as:

  • What is WLAN planning?
  • Challenges of WLAN planning
  • Current approaches to WLAN planning
  • Alternative to current WLAN planning methods
  • Desktop based WLAN planning
  • Preparation of Site Model
  • Selection of WLAN devices and their placement
  • Generating network inventory

Finally, it introduces a groundbreaking new approach that is far superior and cost effective than the existing available methods.

24x7 Monitoring of 802.11 RF medium for Network Performance, Reliability and Security

WLAN networks run on an invisible, wireless medium. WLAN uses the 2.4 GHz and 5.8 GHz Radio Frequency (RF) spectrum which is unlicensed and is open to use for a variety of applications. Due to crowding and the uncertainties of the RF medium, WLAN networks are inherently unreliable.

Business critical applications are increasingly riding on WLAN networks in manufacturing, healthcare, retail and enterprise market segments. These applications are vitally dependent on a reliable and high performance WLAN network. Application downtime may result in user frustration and monetary losses. According to an Infonetics survey, the cost per hour of downtime can be up to $50,000.

This white paper describes the need for monitoring WLAN network, current approaches and their shortcoming. Finally, it suggests a solution that monitors the WLAN medium to ensure performance and reliability of the network.

Current White Papers