Page 46 - Cyber Warnings
P. 46
eliminate false positives for WIDS. But, detection is only part of the equation when protecting a
Wi-Fi network.
How can we stop these rogue APs from getting access to, or getting on, the network in the first
place? WIPS is the other half of the equation.
Historically, organizations have shied away from WIPS because the prevention features could
accidentally shut down neighboring Wi-Fi networks, which can result in painful and costly
repercussions.
For example, Smart City Networks was hit with a hefty $718,000 FCC fine for accidently
shutting down a legitimate neighboring Wi-Fi network. According to Travis LeBlanc at the FCC,
“All companies who seek to use technologies that block FCC-approved Wi-Fi connections are
on notice that such practices are patently unlawful.”
But, new WIPS technology eliminates this problem by using automated classification.
Automated classification goes deeper when classifying SSIDs and puts them into buckets such
as authorized (good), rogue (bad), guest and external.
Once the SSIDs are classified, more granular policies can be applied to users to keep them
safe. For example, a user can connect to an internal AP, but not an external malicious rogue AP
by the same name.
This process is accomplished with sensors that constantly scan the airwaves and capture
marker packet information. That information is then correlated with policy information and
automatically classified. It ensures that legitimate external Wi-Fi networks are not accidentally
taken down.
But, if this new WIPS technology exists, why aren’t more people using it? The reality is a lot of
organizations are using WIDS, but these systems require dedicated teams to wade through
alarms and false positives. So, it’s typically only larger organizations that have the resources to
support them.
Unfortunately, because of the resource requirements and perceived risk, many companies stay
away from the WIDS/WIPS solutions altogether. The good news is that cutting edge WIPS
classification technology is making wireless defense more scalable, automatic and cost-effective
for companies of all sizes.
In the meantime, while organizations play Wi-Fi defense catch-up, how can the everyday
consumer tell if a hotspot is secure? Unfortunately, they can’t. While some organizations are
trying to work toward offering secure Wi-Fi with accreditations like Friendly Wi-Fi, for the most
part consumers are left to fend for themselves. This is another reason why brands should use
automated systems to help keep consumers safe when connecting to public Wi-Fi.
The technology now exists to protect a Wi-Fi network and its users at reasonable cost, with
solutions that require low maintenance, helping to reduce some of the major security issues
facing organizations today.
46 Cyber Warnings E-Magazine – May 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
