Light Reading

Wireless IDS Is All the Rage

Light Reading
LR Mobile News Analysis
Light Reading

Scared stiff by daily reports of new and ever-more-sophisticated attacks on 802.11 wireless LAN networks, enterprise IT managers are turning to the new breed of wireless intrusion detection systems (IDS) that are fast becoming a must-have feature of any self-respecting wireless LAN vendor's portfolio.

Wireless intrusion detection systems work by continuously scanning an enterprise's airspace for the tell-tale signatures that indicate sophisticated denial of service and man-in-the-middle attacks against networks secured by 802.1X-based authentication mechanisms and/or VPN tunnels are underway.

As such, wireless IDS is a step beyond the rogue detection capabilities that are now promoted by many vendors of business-grade equipment. However, recent IDS product announcements from the likes of Aruba Wireless Networks, IBM Corp. (NYSE: IBM), and Red-M suggest that there's more than one way to skin a hacker.

Aruba, for example, offers IDS as a software application that runs on its core or edge wireless LAN switches (see Aruba's Mini-Switch), while IBM offers a managed wireless IDS service for enterprises that don’t want the hassle of doing it themselves (see IBM Eyes the Enterprise). Red-M, meanwhile, says IDS can either be run in-house or be outsourced to a third party (see Red-M Launches IDS).

According to Red-M's president and CEO, Karl Feilder, there are basically three ways to do wireless IDS. The first is to use the existing access point network to monitor traffic patterns. This is the approach being taken by switch startup Airespace Inc., which has seven or eight as-yet-unannounced customers using its system for IDS, according to Alan Cohen, its VP of marketing.

The second way is to dedicate passive 802.11 monitors to tracking all wireless traffic and then analyze the data at a central server for attack patterns. This is the approach being taken by AirMagnet Inc., Aruba, IBM, and others.

Red-M favors a third way: "We have our own specially-designed sensors that analyze traffic, identify the fingerprints of the bad guys, and then send anything suspicious back to the server," says Feilder. He claims that this approach is "more scaleable" because most of the processing is "done at the edge of the network."

Despite all this, Meta Group analyst Chris Kozup says customers shopping for IDS should really look for systems that allow manual control and adjustment of attack patterns and the resultant security reactions, rather than autonomous systems that put security lockdowns in place without user intervention. "Administrators don't want automatic systems," Kozup contends.

Red-M's Feilder cites banks, insurance companies, healthcare agencies, and car manufacturers among the customers using Red-M’s wireless IDS. Ironically, however, he says: "We’re selling most of our products to companies that want to ensure a no-wireless policy." Spoilsports.

— Gabriel Brown, Research Analyst, Unstrung

(0)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
From The Founder
Steve Saunders provides an overview of white box networking and introduces a new "slim line" version of the OSI 7-layer model.
Flash Poll
Live Streaming Video
CLOUD / MANAGED SERVICES: Prepping Ethernet for the Cloud
Moderator: Ray LeMaistre Panelists: Jeremy Bye, Leonard Sheahan
Between the CEOs
Centec on Ethernet Switching

11|26|15   |   09:58   |   (0) comments

Centec CEO James Sun talks to Steve Saunders about Ethernet switching and the white box revolution.
LRTV Custom TV
Delivering Service Agility in the Virtualization Era

11|25|15   |   5.41   |   (0) comments

Interview with Massimo Fatato, WW OSS Business Lead, Hewlett Packard Enterprise.
Wagner’s Ring
How Might Open Source Fail?

11|24|15   |     |   (9) comments

Open source, SDN, and NFV are looking inevitable – but performance, standards proliferation and regulatory capture could derail the movement.
LRTV Custom TV
NFV Lifecycle Orchestration – a Fresh Vision for Telco

11|23|15   |   6.40   |   (0) comments

Simon Osborne, CTO Comptel, and Heavy Reading's Caroline Chappell reveal the business impacts of new SDN and NFV, and what the term service orchestration actually means. Together they define Lifecycle Service Orchestration and how the virtualized future will look for telecoms operators.
Between the CEOs
Cisco's Virtual Role in Saudi

11|20|15   |   12:15   |   (2) comments

Light Reading founder and CEO Steve Saunders talks with Zayan Sadek, Regional Manager at Cisco Systems, about the competitive communications services market and advance of virtualization in Saudi Arabia.
LRTV Huawei Video Resource Center
Huawei Leads With Kubernetes for Cloud PaaS

11|19|15   |   08:26   |   (0) comments

Huawei is looking to Kubernetes as a key tool for building robust open source technologies for customers and partners, said Ying Xiong, chief architect of cloud platform at Huawei, in an interview with Light Reading West Coast Bureau Chief Mitch Wagner at the recent Kubecon conference.
Women in Comms Introduction Videos
WiC in London: The Highlight Reel

11|19|15   |   5:33   |   (1) comment

NetCracker's Mervat El Dabae headlines an inspiring morning in London with help from leading women from Vodafone, TalkTalk, Hyperoptics and Ciena.
LRTV Documentaries
Why Saudi's So Hot for New Tech

11|19|15   |   05:07   |   (0) comments

Light Reading's Steve Saunders reports from Saudi Arabia, a hyper-competitive market desperate to embrace the next generation of communications technologies and services.
LRTV Custom TV
Why Data Models Deliver More Value Than Information Models

11|19|15   |   5.08   |   (0) comments

Stefan Vallin argues that more automation is needed to manage end-to-end services and the hybrid networks they run on, and that data models are key to achieving this.
Telecom Innovators Video Showcase
SDN Management & Orchestration in the WAN

11|17|15   |   7.20   |   (0) comments

Carol Wilson and Packet Design CTO Cengiz Alaettinoglu discuss CSPs' SDN service delivery and assurance requirements. Learn about a modular approach to building automated control, orchestration and management functions for the WAN that are policy- and analytics-driven.
LRTV Custom TV
Flash Networks: Optimizing for Radio Spectral Efficiency

11|17|15   |   3:34   |   (0) comments

Today most optimization vendors only focus on optimizing voice or data. Ofer Gottfried, Flash Networks' CTO, shows how improving data throughput and maximizing spectral efficiency reduces capital and operating expenses while also providing a platform for user engagement.
LRTV Custom TV
Making Pay-TV User Experiences Millennial-Friendly

11|16|15   |   6:42   |   (0) comments

The unique challenge of reaching and engaging Millennials is driving pay-TV video experience transformation that can include higher quality UIs, viewing of multiple content streams at once and seamless transitions between handheld devices and the television.
Allot MobileTrends Report H2/2015 reveals how daily online behavior can be used to discover smarter ways to profile customers and propose valuable, real-time offers to them.
Hot Topics
Samsung to Sell Wireless Networking Unit?
Dan Jones, Mobile Editor, 11/23/2015
Samsung: No Sale of Wireless Unit
Dan Jones, Mobile Editor, 11/25/2015
How Might Open Source Fail?
Mitch Wagner, West Coast Bureau Chief, Light Reading, 11/24/2015
Sprint to Get $1.2B From New Leasing Venture
Dan Jones, Mobile Editor, 11/23/2015
Networking Shines in HP's Gloomy Final Earnings
Mitch Wagner, West Coast Bureau Chief, Light Reading, 11/25/2015
Like Us on Facebook
Twitter Feed
December 15, 2015
Virtualizing Cable Services
Webinar Archive
BETWEEN THE CEOs - Executive Interviews
Centec CEO James Sun talks to Steve Saunders about Ethernet switching and the white box revolution.
Light Reading founder and CEO Steve Saunders talks with Zayan Sadek, Regional Manager at Cisco Systems, about the competitive communications services market and advance of virtualization in Saudi Arabia.
Cats with Phones
Can't Find the Phone on Thanksgiving? Click Here
Check under the cat! (hint: bottom right)
Live Digital Audio

Broadband speeds are ramping up across Europe as the continent, at its own pace, follows North America towards a gigabit society. But there are many steps to take on the road to gigabit broadband availability and a number of technology options that can meet the various requirements of Europe’s high-speed fixed broadband network operators. During this radio show we will look at some of the catalysts for broadband network investments and examine the menu of technology options on offer, including vectoring and for copper plant evolution and the various deployment possibilities for FTTH/B.