 |
 |
 |
|
Planning to adopt wireless local-area network (WLAN) technology? Even if your company's wireless network is already installed, it's wise to keep up with the latest, best practices for network management — particularly security. The goal: to ensure the right users reliable access, while keeping the wrong users safely outside the network.
The best security is testing and prevention
Your IT organization can always benefit from third-party, full-scale network penetration testing. But with a little planning, you can do much of the heavy lifting involved in security testing on your own.
To test the accessibility of your WLAN to outside users, for example, you should conduct regular break-in attempts and "warchalking" or "wardriving" experiments (in which an area is systematically traversed to identify hotspots). Additionally, a WLAN/LAN analyzer can help you quickly discover virtual LANs (VLANs), measure radio frequency (RF) signals, analyze network traffic, identify top talkers, uncover unauthorized devices and locate rogue devices. Such analysis will detect where there's an unprotected access point that doesn't have encryption enabled.
Preparing for outside attacks
Guarding against the 10 leading sources of outside attacks on your wireless network is critical to staying operational.
 1. Spyware: Use antispyware software to combat spyware, which infiltrates a network undetected to steal passwords, data and identities. Antispyware hardware solutions are also available.
2. Blended attacks: Deep-packet inspection, firewalls and intrusion prevention stop blended attacks, which combine characteristics of viruses, worms and malicious code to attack server and Internet vulnerabilities and extract confidential network information.
3. End run: An end run describes any means used to bypass your gateway-level security, including rogue wireless hotspots, USB flash drives or the exploitation of obsolete gateway-level security. The solution is multilayered threat management through stringent deep-packet inspection and URL/content filtering.
4. Rogue access points: Rogue access points permit unauthorized eavesdropping on network traffic, access to data and injection of threats. Detect and block unwanted APs using advanced wireless switches and gateway-level Unified Threat Management (UTM) appliances.
5. Web and browser exploits: Web and browser exploits allow hackers access to and control of systems and can result in stolen passwords, debilitated computers and the introduction of malicious code. Prevent through URL/content filtering at the gateway, vulnerability scanner software and security patches.
6. Worms and viruses: One of the earliest of network threats, worms and viruses compromise performance and security in many ways. Fight these threats by keeping your antivirus software up to date.
7. Information theft: Information theft results in stolen passwords; unauthorized access to databases, applications and systems; and risk from regulatory fines or loss of business. Your strongest defenses include gateway-level firewalls, intrusion prevention, antivirus, antispyware, spam blocking and URL/content filtering.
8. Phishing: Phishing scams allow unscrupulous parties to access private information, deploy hostile applets and conduct other mischief. Employee vigilance and outbound e-mail blocking are two ways to prevent contact with known or suspected phishing addresses.
9. Keystroke logging: Use deep-packet inspection and content-filtering devices to stop or prevent keystroke logging techniques, which capture user names, passwords, e-mail and instant messages, compromising security on multiple levels.
10. Instant messaging vulnerabilities: Instant messaging vulnerabilities increase your wireless network's exposure to spyware, worms and viruses. Educating employees about the security risks of instant messaging is a key defense.
As you manage your wireless network, consider all these ways to counter potential security risks. You'll save time and money and avoid the headaches of a network breach.
%%d_amdefault_cta%%
<< BACK TO TOP
|
|
|
|
|
|
Cisco 4400 Series Wireless LAN Controller
Supports system-wide WLAN functions, from voice and data services to location tracking, for optimum network control, scalability and reliability
CDW 812291
LEARN MORE >>
D-Link 24-Port Stackable Gigabit Wireless Switch + 10 Gigabit Uplinks
Provides an integrated wired and wireless switching solution capable of providing wireless security, easy deployment and the ability to detect rogue access points
CDW 1068367
LEARN MORE >>
3Com® Unified Gigabit Wireless PoE Switch 24
Represents the industry's first truly integrated Layer 2 Gigabit Power over Ethernet (PoE) switch; provides centralized management of both wired and wireless networks
CDW 1058349
LEARN MORE >>
|
|
|
|
Account Manager
%%d_amdefault_ambox%%
|
|
|
