SlideShare a Scribd company logo

How BYOD Will Shape Wireless Network Security in 2012

Download as PPT, PDF
H
hemantchaskar

This document discusses how bring your own device (BYOD) policies will impact wireless network security in 2012. It notes that allowing personal smartphones to connect to enterprise networks can introduce intrusion and data leakage threats from malware and unsecured apps. Common security practices like MAC address filtering and mobile device management are limited in addressing threats from personal devices. The document argues that wireless intrusion prevention systems (WIPS) can automatically detect and block unauthorized personal devices on the network through device fingerprinting and policy enforcement, while still providing protection from traditional wireless attacks. WIPS uses sensors to identify approved and unapproved devices by attributes like type, name, MAC address and location to enforce security policies across the wireless network.

1 of 19
Downloaded 54 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
How BYOD will shape wireless network security in 2012? Dr. Hemant Chaskar Vice President of Technology AirTight Networks © 2011 AirTight Networks. All Rights Reserved.
BYOD! BYOD!
Security? Security?
Why is security a concern with BYOD? Unauthorized smart phones connecting to enterprise network Mobile Wi-Fi hotspots bypassing perimeter security 3G Intrusion threats Extrusion threats Rater, Intr A sion – pun intended!
Enterprise Wi-Fi: Not a barrier for employee smartphones Two-steps to connect your smartphone to WPA2, 802.1x Wi-Fi? Look up username and password in Wi-Fi utility on laptop. Enter those in your personal smartphone.
Intrusion threats from personal smartphones Let us start with malware! Android malware grew 472% in 2H2011 – says PCMag
Intrusion threats from personal smartphones Android malware grew 472% in 2H2011 – says PCMag Even iOS is not safe once “Jailbroken” Your sensitive corporate data could finally end up here! Personal apps reduce productivity, increase risk of data leakage
Limitations of common security practices MAC ACL Lot of initial work, tedious to manage Mobile Device Management (MDM) Required for IT assigned smartphone devices But, no visibility into or control over personal devices IT Assigned Smartphones Personal Smartphones
Wireless Intrusion Prevention Systems (WIPS) Eavesdropping Unauthorized Access WPA2 Firewall, Wired IPS Wi-Phishing Honeypots External APs Cracking External Users Rogue AP Misconfigured AP Ad hoc Connections Wireless DoS WIPS
WIPS architecture Building A Building B Sensor Sensor Server
With this in place, your network is protected from all types of wireless threats, vulnerabilities and attack tools! External APs Rogue APs (On Network) Authorized APs AP Classification STOP Client Classification Policy Mis-config GO STOP IGNORE DoS External Clients Authorized Clients Rogue Clients AUTOMATICALLY DETECT AND BLOCK RED PATHS! WIPS policy enforcement
Smartphone monitoring with WIPS
Authorized APs Authorized Clients Users Smartphone policy enforcement with WIPS User Authentication + Machine Identification Flag/block unapproved devices! GO STOP External APs Mobile Hotspots STOP
Smart device identification Device type Approved/unapproved status Device/user name MAC address
Drill down on device details
Accurate location tracking
Block policy for unapproved smart devices
Extrusion threats from personal smartphones Detect and block authorized clients from connecting to personal mobile hotspots (iPhone MyWi, Android Mobile AP, etc.) Mobile Honeypot Authorized Client 3G Blocked by WIPS Allowed by WIPS Authorized AP Internet
Key takeaways BYOD revolution creates new security risks due to use of personal smart devices on enterprise premises WIPS uses combination of device fingerprinting and policy framework to automatically detect and flag/block unapproved personal smart devices in the network WIPS continues to provide comprehensive protection from traditional Wi-Fi security threats such as Rogue APs, Wi-Phishing, ad hoc networks, DoS attacks, device mis-configurations, etc.

More Related Content

PDF
Why Your Mobile Device Isn’t As Secure As You Think
Blue Coat
 
PPTX
Mobile Security
Kevin Lee
 
PDF
Securing the Enterprise Mobile Perimeter
Brian Gleeson
 
PPTX
Onboarding in the IoT
Paul Madsen
 
PDF
New trends in Payments Security: NFC & Mobile
SISA Information Security Pvt.Ltd
 
PDF
Clear and Present Danger
Ping Identity
 
PPTX
Hardware Authentication
Coder Tech
 
PDF
Mobile Security: The 5 Questions Modern Organizations Are Asking
Lookout
 
Why Your Mobile Device Isn’t As Secure As You Think
Blue Coat
 
Mobile Security
Kevin Lee
 
Securing the Enterprise Mobile Perimeter
Brian Gleeson
 
Onboarding in the IoT
Paul Madsen
 
New trends in Payments Security: NFC & Mobile
SISA Information Security Pvt.Ltd
 
Clear and Present Danger
Ping Identity
 
Hardware Authentication
Coder Tech
 
Mobile Security: The 5 Questions Modern Organizations Are Asking
Lookout
 

What's hot (20)

PDF
Mobile Security 101
Lookout
 
PDF
C0c0n 2011 mobile security presentation v1.2
Santosh Satam
 
PDF
Top 6-Security-Threats-on-iOS
Innovation Network Technologies: InNet
 
PDF
The Password Is Dead: An Argument for Multifactor Biometric Authentication
Veridium
 
PPT
Smart phone and mobile device security
CAS
 
PDF
iOS Threats - Malicious Configuration Profiles, Threat, Detection & Mitigation
Lacoon Mobile Security
 
PDF
MobileCON 2013 – Attacks Aginst MDM Solutions (and What You Can Do About It)
Lacoon Mobile Security
 
PPTX
Mobile security
home
 
PPTX
Ms810 assignment viruses and malware affecting moblie devices
rebelreg
 
PPTX
CIS 2013 Ping Identity Chalktalk
Craig Wu
 
PPTX
Cybersecurity - Keeping Your Business Protected
Robert E Jones
 
PPT
2010: Mobile Security - WHYMCA Developer Conference
Fabio Pietrosanti
 
PPTX
Passwordless auth
Lesha Bhansali
 
PDF
CASE STUDY: How Block Armour enabled secure remote access to on- premise as ...
Block Armour
 
PPTX
Mobile security
Naveen Kumar
 
PPTX
Mobile Security Research Projects Help
Network Simulation Tools
 
PDF
Mobile Security
MarketingArrowECS_CZ
 
PDF
Solution: Block Armour Secure Remote Access for WFH
Block Armour
 
PDF
Top Seven Risks of Enterprise Mobility - How to protect your business
Symantec
 
PDF
The Ultimate Security Checklist Before Launching Your Android App
Appknox
 
Mobile Security 101
Lookout
 
C0c0n 2011 mobile security presentation v1.2
Santosh Satam
 
Top 6-Security-Threats-on-iOS
Innovation Network Technologies: InNet
 
The Password Is Dead: An Argument for Multifactor Biometric Authentication
Veridium
 
Smart phone and mobile device security
CAS
 
iOS Threats - Malicious Configuration Profiles, Threat, Detection & Mitigation
Lacoon Mobile Security
 
MobileCON 2013 – Attacks Aginst MDM Solutions (and What You Can Do About It)
Lacoon Mobile Security
 
Mobile security
home
 
Ms810 assignment viruses and malware affecting moblie devices
rebelreg
 
CIS 2013 Ping Identity Chalktalk
Craig Wu
 
Cybersecurity - Keeping Your Business Protected
Robert E Jones
 
2010: Mobile Security - WHYMCA Developer Conference
Fabio Pietrosanti
 
Passwordless auth
Lesha Bhansali
 
CASE STUDY: How Block Armour enabled secure remote access to on- premise as ...
Block Armour
 
Mobile security
Naveen Kumar
 
Mobile Security Research Projects Help
Network Simulation Tools
 
Mobile Security
MarketingArrowECS_CZ
 
Solution: Block Armour Secure Remote Access for WFH
Block Armour
 
Top Seven Risks of Enterprise Mobility - How to protect your business
Symantec
 
The Ultimate Security Checklist Before Launching Your Android App
Appknox
 
Ad

Similar to How BYOD Will Shape Wireless Network Security in 2012 (20)

PPTX
Implementing Enterprise Wireless Security Policy in the BYOD Era
Kappa Data
 
PDF
BETTER- Threat Whitepaper- PoS
Purna Bhat
 
PDF
Security in IoT Mobile Apps Safeguarding Your Devices and Da.pdf
himanshuwowit
 
PDF
LIFT OFF 2017: IoT and MSS Deep Dive
Robert Herjavec
 
PPTX
Top 5 wi fi security threats
gruzabb
 
PDF
Sholove cyren web security - technical datasheet2
SHOLOVE INTERNATIONAL LLC
 
PPTX
A Quick Guide On What Is IoT Security_.pptx
TurboAnchor
 
PPTX
Mobile security
dilipdubey5
 
PPTX
Tips and Tricks on Securing your Android Devices
Quick Heal Technologies Ltd.
 
PPTX
Mobile protection
preetpatel72
 
PDF
ForeScout IoT Enterprise Risk Report
Forescout Technologies Inc
 
PDF
Mobile Apps and Security Attacks: An Introduction
Nagarro
 
PDF
12 IoT Cyber Security Threats to Avoid - CyberHive.pdf
online Marketing
 
PDF
IRJET- Android Device Attacks and Threats
IRJET Journal
 
PPT
i7 Networks - Presentation at Zensar #TechShowcase - An iSPIRT ProductNation ...
ProductNation/iSPIRT
 
PPTX
Mobile App Security: Enterprise Checklist
Jignesh Solanki
 
PDF
WSO2Con US 2013 - Securing Cloud and Mobile: Pragmatic Enterprise Security Ar...
WSO2
 
PDF
Bolstering the security of iiot applications – how to go about it
Moon Technolabs Pvt. Ltd.
 
PDF
Smartphone Smart Card 061013
McAlester Army Ammunition Plant
 
PDF
Your Shortcut to BYOD Success
Sierraware
 
Implementing Enterprise Wireless Security Policy in the BYOD Era
Kappa Data
 
BETTER- Threat Whitepaper- PoS
Purna Bhat
 
Security in IoT Mobile Apps Safeguarding Your Devices and Da.pdf
himanshuwowit
 
LIFT OFF 2017: IoT and MSS Deep Dive
Robert Herjavec
 
Top 5 wi fi security threats
gruzabb
 
Sholove cyren web security - technical datasheet2
SHOLOVE INTERNATIONAL LLC
 
A Quick Guide On What Is IoT Security_.pptx
TurboAnchor
 
Mobile security
dilipdubey5
 
Tips and Tricks on Securing your Android Devices
Quick Heal Technologies Ltd.
 
Mobile protection
preetpatel72
 
ForeScout IoT Enterprise Risk Report
Forescout Technologies Inc
 
Mobile Apps and Security Attacks: An Introduction
Nagarro
 
12 IoT Cyber Security Threats to Avoid - CyberHive.pdf
online Marketing
 
IRJET- Android Device Attacks and Threats
IRJET Journal
 
i7 Networks - Presentation at Zensar #TechShowcase - An iSPIRT ProductNation ...
ProductNation/iSPIRT
 
Mobile App Security: Enterprise Checklist
Jignesh Solanki
 
WSO2Con US 2013 - Securing Cloud and Mobile: Pragmatic Enterprise Security Ar...
WSO2
 
Bolstering the security of iiot applications – how to go about it
Moon Technolabs Pvt. Ltd.
 
Smartphone Smart Card 061013
McAlester Army Ammunition Plant
 
Your Shortcut to BYOD Success
Sierraware
 
Ad

How BYOD Will Shape Wireless Network Security in 2012

  • 1. How BYOD will shape wireless network security in 2012? Dr. Hemant Chaskar Vice President of Technology AirTight Networks © 2011 AirTight Networks. All Rights Reserved.
  • 4. Why is security a concern with BYOD? Unauthorized smart phones connecting to enterprise network Mobile Wi-Fi hotspots bypassing perimeter security 3G Intrusion threats Extrusion threats Rater, Intr A sion – pun intended!
  • 5. Enterprise Wi-Fi: Not a barrier for employee smartphones Two-steps to connect your smartphone to WPA2, 802.1x Wi-Fi? Look up username and password in Wi-Fi utility on laptop. Enter those in your personal smartphone.
  • 6. Intrusion threats from personal smartphones Let us start with malware! Android malware grew 472% in 2H2011 – says PCMag
  • 7. Intrusion threats from personal smartphones Android malware grew 472% in 2H2011 – says PCMag Even iOS is not safe once “Jailbroken” Your sensitive corporate data could finally end up here! Personal apps reduce productivity, increase risk of data leakage
  • 8. Limitations of common security practices MAC ACL Lot of initial work, tedious to manage Mobile Device Management (MDM) Required for IT assigned smartphone devices But, no visibility into or control over personal devices IT Assigned Smartphones Personal Smartphones
  • 9. Wireless Intrusion Prevention Systems (WIPS) Eavesdropping Unauthorized Access WPA2 Firewall, Wired IPS Wi-Phishing Honeypots External APs Cracking External Users Rogue AP Misconfigured AP Ad hoc Connections Wireless DoS WIPS
  • 10. WIPS architecture Building A Building B Sensor Sensor Server
  • 11. With this in place, your network is protected from all types of wireless threats, vulnerabilities and attack tools! External APs Rogue APs (On Network) Authorized APs AP Classification STOP Client Classification Policy Mis-config GO STOP IGNORE DoS External Clients Authorized Clients Rogue Clients AUTOMATICALLY DETECT AND BLOCK RED PATHS! WIPS policy enforcement
  • 13. Authorized APs Authorized Clients Users Smartphone policy enforcement with WIPS User Authentication + Machine Identification Flag/block unapproved devices! GO STOP External APs Mobile Hotspots STOP
  • 14. Smart device identification Device type Approved/unapproved status Device/user name MAC address
  • 15. Drill down on device details
  • 17. Block policy for unapproved smart devices
  • 18. Extrusion threats from personal smartphones Detect and block authorized clients from connecting to personal mobile hotspots (iPhone MyWi, Android Mobile AP, etc.) Mobile Honeypot Authorized Client 3G Blocked by WIPS Allowed by WIPS Authorized AP Internet
  • 19. Key takeaways BYOD revolution creates new security risks due to use of personal smart devices on enterprise premises WIPS uses combination of device fingerprinting and policy framework to automatically detect and flag/block unapproved personal smart devices in the network WIPS continues to provide comprehensive protection from traditional Wi-Fi security threats such as Rogue APs, Wi-Phishing, ad hoc networks, DoS attacks, device mis-configurations, etc.

Editor's Notes

  • #6: Take high resolution picture of this Samsung phone in Pune office. Take another picture of iPhone screen in Pune office.