Sensor configuration is controlled within the policy manager. Options include channel scanning, allowed WEP (Wired Equivalent Privacy) modes, authentication modes and allowed data rates. These are accessed and changed by right-clicking on the individual sensor. You can also define performance-policy parameters--maximum associations allowed, number of different types of frames allowed and number of bytes allowed based on types of frames for stations and APs--and manage vendor-specific policies.
The vendor policy, used to detect identity thefts such as spoofed MAC addresses, is supported through AirDefense's OUI (organizational unique identifier) database for all major WLAN vendors. I tested this by specifying the use of a Cisco device at one of the locations and spoofing a MAC address. The sensor was sensitive enough to pick it up. The system also could detect the NetStumbler and AirMagnet probes I performed on our test network, listing them as possible attacks. And it generated alarms when a Windows XP device tried to scan the network to connect to any available AP.
|
Good
Provides granular control of network policy violation reporting
Good overall performance monitoring and reporting capabilities Bad
Expensive |
In addition to setting policies by sensor, APs or individual station, you can apply policies based on allowable hours of operation.
To realize the benefits of cloud-native software, an application must actually be cloud-native—designed to run in the cloud, interacting with disaggregated cloud services, fully manageable as code—to deliver the expected benefits.
By combining resources and expertise, the AI-Enabled ICT Workforce Consortium will offer a blueprint for how industries can adapt to an AI-dominated future.
IT leaders should heed the guidance of cybersecurity insurance providers who think businesses should prioritize security education, incident preparedness, regular internal audits, and ongoing vulnerability scanning and patching.
