Sequans Ad
Unstrung News Analysis

Wireless IDS Is All the Rage

Scared stiff by daily reports of new and ever-more-sophisticated attacks on 802.11 wireless LAN networks, enterprise IT managers are turning to the new breed of wireless intrusion detection systems (IDS) that are fast becoming a must-have feature of any self-respecting wireless LAN vendor's portfolio.

Wireless intrusion detection systems work by continuously scanning an enterprise's airspace for the tell-tale signatures that indicate sophisticated denial of service and man-in-the-middle attacks against networks secured by 802.1X-based authentication mechanisms and/or VPN tunnels are underway.

As such, wireless IDS is a step beyond the rogue detection capabilities that are now promoted by many vendors of business-grade equipment. However, recent IDS product announcements from the likes of Aruba Wireless Networks, IBM Corp. (NYSE: IBM), and Red-M suggest that there's more than one way to skin a hacker.

Aruba, for example, offers IDS as a software application that runs on its core or edge wireless LAN switches (see Aruba's Mini-Switch), while IBM offers a managed wireless IDS service for enterprises that don’t want the hassle of doing it themselves (see IBM Eyes the Enterprise). Red-M, meanwhile, says IDS can either be run in-house or be outsourced to a third party (see Red-M Launches IDS).

According to Red-M's president and CEO, Karl Feilder, there are basically three ways to do wireless IDS. The first is to use the existing access point network to monitor traffic patterns. This is the approach being taken by switch startup Airespace Inc., which has seven or eight as-yet-unannounced customers using its system for IDS, according to Alan Cohen, its VP of marketing.

The second way is to dedicate passive 802.11 monitors to tracking all wireless traffic and then analyze the data at a central server for attack patterns. This is the approach being taken by AirMagnet Inc., Aruba, IBM, and others.

Red-M favors a third way: "We have our own specially-designed sensors that analyze traffic, identify the fingerprints of the bad guys, and then send anything suspicious back to the server," says Feilder. He claims that this approach is "more scaleable" because most of the processing is "done at the edge of the network."

Despite all this, Meta Group analyst Chris Kozup says customers shopping for IDS should really look for systems that allow manual control and adjustment of attack patterns and the resultant security reactions, rather than autonomous systems that put security lockdowns in place without user intervention. "Administrators don't want automatic systems," Kozup contends.

Red-M's Feilder cites banks, insurance companies, healthcare agencies, and car manufacturers among the customers using Red-M’s wireless IDS. Ironically, however, he says: "We’re selling most of our products to companies that want to ensure a no-wireless policy." Spoilsports.

— Gabriel Brown, Research Analyst, Unstrung
Newest Comments First       Display in Chronological Order
Be the first to post a comment regarding this story.
UNSTRUNG MARKET PLACE
Used and Refurbished HP ProCurve Switches
Lifetime Warranties, Professional Testing & Shipping on all HP Equipment Purchases!
VoIP For Dummies - Get a Free Copy
Find out how VoIP works, business advantages & the 3 phases to VoIP migration
Used and Refurbished Cisco Switches
Purchase Your Switches From Network Liquidators. Savings of Up to 90% with a Lifetime Warranty!
Want to BUY your Nortel Optical packs
TruePulse pays CASH for your surplus Nortel OM3500, OM5200 & OME6500 cards
Earn an MBA - 100% Online
Earn an Accredited MBA Degree 100% Online! No GMAT Required. Enroll Today.
The blogs and comments are the opinions only of the writers and do not reflect the views of Unstrung. They are no substitute for your own research and should not be relied upon for trading or any other purpose.
Related Content
Events
Cable Next-Gen Broadband Strategies: Docsis 3.0, Wireless, Fiber & Beyond
 Thursday, February 25, 2010
The Cable Center, Denver
Tower Technology Summit
 March 23- 25, 2010
Las Vegas Convention Center, Las Vegas
Ethernet Europe
 Monday & Tuesday, April 12 & 13, 2010
London Marriott Hotel Grosvenor Square, London
OSS Virtual Event
 Tuesday, April 20, 2010
Webinars
Most Popular
Read
White Papers SPONSORED CONTENT
Featured
Companies
Alltel (102), Apple (453), Aruba Networks (97), AT&T (formerly Cingular) (910), Cisco (875), Clearwire (328), Google (418), Intel (696), Juniper (148), Microsoft (509), Motorola (1299), Nokia (1882), NTT DoCoMo (483), Palm (294), Qualcomm (500), Research In Motion (RIM) (344), Sprint Nextel (966), Symbol Technologies (169), T-Mobile (533), Texas Instruments (206), Verizon Wireless (808), Vodafone (1243)

Fixed/Mobile Convergence
ATM (10), Backhaul (51), Circuit Switch (13), Copper (3), Core Network (412), DWDM (6), Email/Personal Information Management (403), Ethernet (36), Finance & Banking (85), Fixed Mobile Convergence (335), Frame Relay (1), General Packet Radio Service (GPRS) (613), Global System for Mobile Communications (GSM) (1540), Handheld Computers (379), IP Multimedia Subsystem (IMS) (28), IPv6 (15), Media Gateways (19), Message Gateways (SMS, MMS) (718), Microwave (69), Mobile Data Gateways (104), Mobile Devices (790), Mobile Management (98), Mobile VPNs (61), MPLS (8), Packet Switch (109), Sales Force Apps (43), Session Border Controllers (3), Shop-Floor Apps (23), Smartphones & Handsets (2047), Sonet (8), Vertical Apps (235), Webpads (93), WiMax (33), Wireless Web Gateways (WAP, i-mode) (105)

Handhelds
Email/Personal Information Management (403), Finance & Banking (85), Fixed Mobile Convergence (335), Global Positioning System (GPS) (121), Global System for Mobile Communications (GSM) (1540), Handheld Computers (379), iDEN (74), Message Gateways (SMS, MMS) (718), Microbrowsers (66), Mobile Data Gateways (104), Mobile Databases (30), Mobile Devices (790), Mobile Java(J2ME) (104), Mobile Management (98), Mobile Operating Systems (Pocket PC, Palm, EPOC, RIM) (318), Mobile VPNs (61), Sales Force Apps (43), Security (293), Shop-Floor Apps (23), Smartphones & Handsets (2047), Univeral Mobile Telecommunications Service (UMTS) (1283), Vertical Apps (235), Webpads (93), Wireless Web Gateways (WAP, i-mode) (105)

Mobile Applications
Bluetooth (246), Email/Personal Information Management (403), Finance & Banking (85), Global Positioning System (GPS) (121), Handheld Computers (379), Message Gateways (SMS, MMS) (718), Mobile Data Gateways (104), Mobile Databases (30), Mobile Devices (790), Mobile Java(J2ME) (104), Mobile Management (98), Mobile Operating Systems (Pocket PC, Palm, EPOC, RIM) (318), Mobile VPNs (61), Sales Force Apps (43), Security (293), Service Gateways(GGSN/PDSN) (163), Shop-Floor Apps (23), Smartphones & Handsets (2047), Vertical Apps (235), Webpads (93), Wireless Applications (940), Wireless Web Gateways (WAP, i-mode) (105)

Mobile Workforce
Bluetooth (246), Email/Personal Information Management (403), Finance & Banking (85), Fixed Mobile Convergence (335), Global Positioning System (GPS) (121), Handheld Computers (379), Message Gateways (SMS, MMS) (718), Microbrowsers (66), Middleware (54), Mobile .Net (15), Mobile Databases (30), Mobile Devices (790), Mobile Java(J2ME) (104), Mobile Management (98), Mobile Operating Systems (Pocket PC, Palm, EPOC, RIM) (318), Mobile VPNs (61), Sales Force Apps (43), Security (293), Shop-Floor Apps (23), Smartphones & Handsets (2047), Vertical Apps (235), Webpads (93), Wireless Web Gateways (WAP, i-mode) (105)

Mobile/Wireless System (OS's)
Email/Personal Information Management (403), Fixed Mobile Convergence (335), Handheld Computers (379), Mobile .Net (15), Mobile Devices (790), Mobile Java(J2ME) (104), Mobile Management (98), Mobile Operating Systems (Pocket PC, Palm, EPOC, RIM) (318), Smartphones & Handsets (2047), Webpads (93)

RFID
Bluetooth (246), Global Positioning System (GPS) (121), Mobile Management (98), Radio (RF) Chips (79), Shop-Floor Apps (23), Vertical Apps (235)

Telco Wireless
802.16 (587), Access Points (722), Base Station Controller (BSC) (243), Base Transceiver Station (BTS) (281), Code Division Multiple Access (CDMA) (780), Enhanced Data GSM Environment (EDGE) (405), iDEN (74), IEEE 802.11 (a,b,g) (1190), OSS/Billing/CRM (646), Service Gateways(GGSN/PDSN) (163), Ultrawideband (UWB) (140), WLAN Bridges (71), WLAN Switches (480)

WiMax/Broadband Wireless
802.11 Chipsets (282), 802.16 (587), 802.20 (66), Antennas (63), Enhanced Data GSM Environment (EDGE) (405), Fixed WiMax (212), General Packet Radio Service (GPRS) (613), HiperLAN (11), Home Base Stations/Femtocells (392), Mobile WiMax (805), WiMax (751), Wireless Broadband (722)

Wireless VOIP
Email/Personal Information Management (403), Fixed Mobile Convergence (335), Handheld Computers (379), Smartphones & Handsets (2047)

WLANs/WiFi/802.11
802.11 Chipsets (282), 802.11 Single Chips (SOC) (39), Access Points (722), Antennas (63), Base Station Controller (BSC) (243), Base Transceiver Station (BTS) (281), Baseband Controller (49), Comms Chips & Wireless Components (1297), HiperLAN (11), IEEE 802.11 (a,b,g) (1190), Multimedia Mobile Access Communication (MMAC) (17), Power Amplifiers (75), Public Access Hotspots (986), Radio (RF) Chips (79), Security (404), Smart Antennas (61), Wireless LAN (1217), WLAN Bridges (71), WLAN cards (119), WLAN Switches (480)