| AirDefense
Guard provides advanced intrusion detection for
wireless LANs based on signature analysis, policy
deviation, protocol assessment policy deviation
and Statistically anomalous behavior. AirDefense
is designed to accurately detect and respond to:
By stealing an authorized MAC address, an intruder
has full access to the network. However, AirDefense
tracks the digital “fingerprints” —
vendor-specific characteristics and personal trademarks
— of authorized users to identify intruders
in the network.
AirDefense quickly recognizes the early signs
and protocol abuses of a DoS attack that jams
the airwaves and shuts down a wireless LAN.
By posing as an access point, intruders can force
workstations to disassociate from authorized access
points and route all traffic through the intruder.
The intruder can then gain access to the network
by posing as an authorized user and simultaneously
operating on multiple channels. AirDefense detects
man-in-the-middle attacks by ensuring that access
points only operate on set channels and proper
protocols are used.
With its patent-pending Multi-Dimensional Detection
Engine, AirDefense analyzes threats to identify
security breaches based on:
| |
 |
Signature analysis |
| |
|
Protocol analysis |
| |
|
Policy deviation |
| |
|
Statistically anomalous behavior. |
AirDefense Guard responds to attacks with which interfaces with access
points to disconnect the attacker's connection
to the WLAN.
To request more information about AirDefense Guard
click here
|
