Light Reading

Wireless IDS Is All the Rage

Light Reading
LR Mobile News Analysis
Light Reading
10/22/2003
50%
50%

Scared stiff by daily reports of new and ever-more-sophisticated attacks on 802.11 wireless LAN networks, enterprise IT managers are turning to the new breed of wireless intrusion detection systems (IDS) that are fast becoming a must-have feature of any self-respecting wireless LAN vendor's portfolio.

Wireless intrusion detection systems work by continuously scanning an enterprise's airspace for the tell-tale signatures that indicate sophisticated denial of service and man-in-the-middle attacks against networks secured by 802.1X-based authentication mechanisms and/or VPN tunnels are underway.

As such, wireless IDS is a step beyond the rogue detection capabilities that are now promoted by many vendors of business-grade equipment. However, recent IDS product announcements from the likes of Aruba Wireless Networks, IBM Corp. (NYSE: IBM), and Red-M suggest that there's more than one way to skin a hacker.

Aruba, for example, offers IDS as a software application that runs on its core or edge wireless LAN switches (see Aruba's Mini-Switch), while IBM offers a managed wireless IDS service for enterprises that don’t want the hassle of doing it themselves (see IBM Eyes the Enterprise). Red-M, meanwhile, says IDS can either be run in-house or be outsourced to a third party (see Red-M Launches IDS).

According to Red-M's president and CEO, Karl Feilder, there are basically three ways to do wireless IDS. The first is to use the existing access point network to monitor traffic patterns. This is the approach being taken by switch startup Airespace Inc., which has seven or eight as-yet-unannounced customers using its system for IDS, according to Alan Cohen, its VP of marketing.

The second way is to dedicate passive 802.11 monitors to tracking all wireless traffic and then analyze the data at a central server for attack patterns. This is the approach being taken by AirMagnet Inc., Aruba, IBM, and others.

Red-M favors a third way: "We have our own specially-designed sensors that analyze traffic, identify the fingerprints of the bad guys, and then send anything suspicious back to the server," says Feilder. He claims that this approach is "more scaleable" because most of the processing is "done at the edge of the network."

Despite all this, Meta Group analyst Chris Kozup says customers shopping for IDS should really look for systems that allow manual control and adjustment of attack patterns and the resultant security reactions, rather than autonomous systems that put security lockdowns in place without user intervention. "Administrators don't want automatic systems," Kozup contends.

Red-M's Feilder cites banks, insurance companies, healthcare agencies, and car manufacturers among the customers using Red-M’s wireless IDS. Ironically, however, he says: "We’re selling most of our products to companies that want to ensure a no-wireless policy." Spoilsports.

— Gabriel Brown, Research Analyst, Unstrung

(0)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View
Flash Poll
From The Founder
It's clear to me that the communications industry is divided into two types of people, and only one is living in the real world.
LRTV Documentaries
The Rise of Virtual CPE

1|27|15   |   01:38   |   (3) comments


As NFV strategies evolve from tests and trials to production telco networks, expect to hear a lot about virtual CPE (customer premises equipment) rollouts during 2015.
LRTV Documentaries
Optical Is Hot in 2015

1|23|15   |   01:56   |   (2) comments


Optical comms technology underpins the whole communications sector and there are some really hot trends set for 2015.
LRTV Custom TV
Policy Control in the Fast Lane

1|22|15   |   2:57   |   (0) comments


What's making policy control strategic in 2015 and beyond? Amdocs talks with Heavy Reading's Graham Finnie about the key factors driving change in the data services landscape. Find out what his policy management research reveals about the road ahead for policy control – and sign up for
LRTV Documentaries
Highlights From the 2020 Vision Executive Summit

1|21|15   |   4:33   |   (2) comments


In December 2014, Light Reading brought together telecom executives in Reykjavik, Iceland to discuss their vision for high-capacity networks through the end of the decade. The intimate, interactive meeting was set against the backdrop of Iceland's spectacular natural beauty. As one of the event's founding sponsors, Cisco's Doug Webster shared his company's ...
LRTV Huawei Video Resource Center
Huawei Pay-TV Partner Harmonic, Helping Carriers Accelerate 4K Video Deployment with Huawei

1|20|15   |   5:42   |   (1) comment


At IBC, Peter Alexander, Senior Vice President & CMO at Harmonic, speaks about the growing interest in pay-TV service and its branching into multiple devices.
LRTV Huawei Video Resource Center
Sony Marketing Director Olivier Bovis Discusses the Outlook for 4K and Cooperation With Huawei at IBC 2014

1|20|15   |   6:50   |   (0) comments


At IBC, Olivier Bovis, Marketing Director of Sony, speaks about the coming of the 4K era.
LRTV Huawei Video Resource Center
Huawei Pay-TV Partner Envivio, Helping Carriers Accelerate 4K Video Deployment

1|20|15   |   2:57   |   (0) comments


At IBC, Olivier Bovis, Marketing Director of Sony, speaks about the coming of the 4K era.
LRTV Huawei Video Resource Center
Pay-TV's Networked Future

1|20|15   |   6:29   |   (0) comments


At IBC, Jeff Heynen, Principal Analyst at Infonetics, speaks about the future of the pay-TV industry and its transition.
LRTV Huawei Video Resource Center
Jeff Heynen: Distributed Access Will Help MSOs Compete in the Future

1|20|15   |   2:26   |   (0) comments


At IBC, Jeff Heynen, Principal Analyst at Infonetics, speaks about moving to distributed access and the future trend of cable business.
LRTV Interviews
Cisco Talks Transformation

1|20|15   |   13:02   |   (0) comments


In December 2014, Steve Saunders sat down with Cisco VP of Products & Solutions Marketing Doug Webster at Light Reading's 2020 Vision executive summit in Reykjavik, Iceland. They spoke about Cisco's approach to network virtualization as well as how service providers can begin to monetize high-capacity networks through the end of the decade.
LRTV Interviews
Bob Wilson, Arsenal Legend: The Light Reading Interview

1|16|15   |   35:36   |   (3) comments


Arsenal goalkeeping legend Bob Wilson was Light Reading's guest interviewee at the 2020 Vision Executive Summit in December. See what the former soccer star and sports broadcaster had to say when he took to the stage in Iceland.
LRTV Custom TV
What MEF Third Network Initiative Means for SDN & NFV

1|14|15   |   6:13   |   (0) comments


Vitesse Semiconductor CTO Martin Nuss discusses the importance of the MEF Third Network initiative and why it's good news for SDN/NFV industry initiatives.
Upcoming Live Events
February 5, 2015, Washington, DC
February 19, 2015, The Fairmont San Jose, San Jose, CA
March 17, 2015, The Cable Center, Denver, CO
April 14, 2015, The Westin Times Square, New York City, NY
May 12, 2015, Grand Hyatt, Denver, CO
May 13-14, 2015, The Westin Peachtree, Atlanta, GA
June 8, 2015, Chicago, IL
June 9-10, 2015, Chicago, IL
June 9, 2015, Chicago, IL
September 9-10, 2015, The Westin Galleria Dallas, Dallas, TX
September 29-30, 2015, The Westin Grand Müchen, Munich, Germany
November 11-12, 2015, The Westin Peachtree Plaza, Atlanta, GA
December 1, 2015, The Westin Times Square, New York City
December 2-3, 2015, The Westin Times Square, New York City
Infographics
Hot Topics
Google Continues Gigabit Expansion
Jason Meyers, Senior Editor, Gigabit Cities/IoT, 1/27/2015
BlackBerry Wants Net Neutrality Protection – That's Just Sad
Mitch Wagner, West Coast Bureau Chief, Light Reading, 1/22/2015
Verizon Ready for Google MVNO Challenge
Dan Jones, Mobile Editor, 1/22/2015
FiOS Picks Up Pace Again
Alan Breznick, Cable/Video Practice Leader, 1/22/2015
Indiana Carrier Takes Fiber to the Farm
Jason Meyers, Senior Editor, Gigabit Cities/IoT, 1/22/2015
Like Us on Facebook
Twitter Feed
Webinar Archive