Research

Making Sense Of Wireless IPSs

Forrester Research says that choosing the right intrusion prevention system is not a case of one size fits all.

By Paul Stamp

Page 3

Recommendations: One Size Does Not Fit All

Finding the right wireless IPS for your environment depends on a number of factors, such as users connection methods, corporate security standards, and the size of your budget.

  • Establish your wireless priorities. The best product for you will depend on your wireless policy.6 If you have a no-wireless policy, or if you run an open wireless network that requires a VPN client to connect to corporate resources, then you must make rogue access point detection your top priority. For a locked-down WLAN that acts as part of the corporate network, you should instead worry most about mitigating attacks on clients and access points.

  • Choose a system that fits your network and physical environment. Evaluate the technical strengths and weaknesses of products relative to your environment. An office in a crowded urban environment will require a more sophisticated solution for distinguishing neighboring wireless network activities from genuine attacks than a suburban campus environment will. Also, if interoffice network traffic is already crowding your wide-area network (WAN), choose a more decentralized solution.

  • Consider hidden costs. When comparing costs of different wireless IPS solutions, remember to include the cost of installing new network hardware. If the solution requires separate IPS sensors, installation costs can be significant because the sensors often need to be deployed in inaccessible places. In these hard-to-reach places, power over Ethernet (PoE) can bring costs down significantly.7 You should also consider the cost of hardware and software youll need to support any central server-based data processing the solution requires.

Endnotes

1The term data link layer refers to the Layer 2 of the International Organization for Standardizations (ISO) 7 Layer Open System Interconnect (OSI) Model. For more information on the OSI Model, see www.webopedia.com/quick_ref/OSI_Layers.asp.

2There are a number of methods for identifying rogue access points, ranging from handheld devices to existing network components performing regular scans. See the May 12, 2003, IdeaByte Identifying Rogue Access Points And Protecting The Wireless LAN.

3Wireless attacks are one of the biggest threats facing businesses today. See the June 5, 2002, Planning Assumption Building Wireless LAN Security: Tier By Tier.

4Authentication, authorization, and encryption are also essential components in a comprehensive wireless security architecture. See the December 18, 2003, Planning Assumption Wireless LAN Security: Best Practices.

5Once a client has disassociated from an access point, the clients system will automatically continue to try to reconnect. To minimize the effort needed on an ongoing basis to stop the client from reconnecting, more complex solutions customize the method they use to terminate the connection depending on the devices involved.

$firstKeyword

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Security Directions: A Virtual Conference

Security Directions Available On Demand Sept. 30 - Dec. 30

Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.

» Register Now

WEBCAST
Protecting PII: How to Work with IT to Manage Risk

Compuware Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.

» View this Webcast

Featured Sponsors