Wireless Intrusion Prevention Systems

12
Wireless Intrusion Prevention Systems Övervaka Analysera Spåra Blockera Preventer a WIPS Radiofrekvenser Dygnet runt Trådlös trafik Angripare Angripare Även de som inte följer regler WIPS lär

TAGS:

description

Wireless Intrusion Prevention Systems. Trådlös trafik. Angripare. WIPS lär sig. Radiofrekvenser Dygnet runt. Angripare Även de som inte följer regler. Wireless Intrusion Prevention Systems. WIPS. IDPS. Wireless Intrusion Prevention Systems. Helhetslösning - PowerPoint PPT Presentation

Transcript of Wireless Intrusion Prevention Systems

Page 1: Wireless Intrusion Prevention Systems

Wireless Intrusion Prevention Systems

Övervaka Analysera Spåra Blockera Preventera

WIPS

• Radiofrekvenser• Dygnet runt

• Trådlös trafik

• Angripare

• Angripare• Även de som inte följer regler

• WIPS lär sig

Page 2: Wireless Intrusion Prevention Systems

Wireless Intrusion Prevention Systems

Hårdvara

• Sensorer / AP’s• Server• Console

Funktion

• Brandväggsfunktion• Prestanda• Störningar• Spåra

Andra system

• IP vs fysisk plats• Isolerad (dold)

WIPS IDPS

Page 3: Wireless Intrusion Prevention Systems

Wireless Intrusion Prevention Systems

Helhetslösning

Cisco 500 000 kr

Page 4: Wireless Intrusion Prevention Systems

WIPS - Sensorer

Hårdvara

Scannar

Spårar

Block-signal

802.11x

Page 5: Wireless Intrusion Prevention Systems

WIPS - Server

Analysera

Klassificera

Trafiken Attack? Felkonfigurering?

Tröskel FA / FR - Fel

Sensor

Page 6: Wireless Intrusion Prevention Systems

WIPS - Console Administratörer

Kontrollpanel Översikt Inställningar Statistik

Page 7: Wireless Intrusion Prevention Systems

WISP - Detektering Metoder

Signatur

Protokoll

Policy

Mönsterigenkänning, avvikelser

okända hot = ineffektiv metod

Frames Errors 802.11 injection

Så dessa upprätthålls

Page 8: Wireless Intrusion Prevention Systems

WIPS - Preventera Detekteringar, alerts

Listor Inlärda Hämtade online

Page 9: Wireless Intrusion Prevention Systems

WIPS – Spåra

Spåra

Spårning problematik

Fysisk plats Triangulering(7m) RF fingerprinting(3m)

Logga

Förflyttningar

Page 10: Wireless Intrusion Prevention Systems

WIPS – Regler & Policy’s Policy

Åtgärd

Definiera specifika policy

Vad är tillåtet? Vad är inte tillåtet? Olika användare/grupper

Prioritet Tröskelvärde

Spåra, blockera, notifiera

WIPS ser till att dessa följs

Page 11: Wireless Intrusion Prevention Systems

WIPS – Utredning & Strategi Centraliserad analys

Rapporter

Insamling av data: Granskningar Varningar Loggar

Incidentspecifika Schemalagda

Page 12: Wireless Intrusion Prevention Systems

WIPS - Begränsningar Passiva sniffers

Kanalbegränsning

Fysisk skada


Intrusion Prevention System

Intrusion Prevention System

IPS (intrusion prevention system)

IPS (intrusion prevention system)

POWERFUL AND INNOVATIVE INTRUSION PREVENTION SYSTEMS · SOLUTION RIEF POWERFUL AND INNOVATIVE INTRUSION PREVENTION SYSTEMS FortiGate IPS INTRODUCTION Critics of standalone Intrusion

POWERFUL AND INNOVATIVE INTRUSION PREVENTION SYSTEMS · SOLUTION RIEF POWERFUL AND INNOVATIVE INTRUSION PREVENTION SYSTEMS FortiGate IPS INTRODUCTION Critics of standalone Intrusion

DATA CENTER INTRUSION PREVENTION SYSTEM TEST REPORT · DATA CENTER INTRUSION PREVENTION SYSTEM TEST REPORT ... NSS Labs Data Center Intrusion Prevention System (DCIPS) Test Report

DATA CENTER INTRUSION PREVENTION SYSTEM TEST REPORT · DATA CENTER INTRUSION PREVENTION SYSTEM TEST REPORT ... NSS Labs Data Center Intrusion Prevention System (DCIPS) Test Report

Authentication & Intrusion Prevention for Multi-Link Wireless Networks

Authentication & Intrusion Prevention for Multi-Link Wireless Networks

TippingPoint Intrusion Prevention Systems

TippingPoint Intrusion Prevention Systems

wireless intrusion

wireless intrusion

Intrusion Detection System and Intrusion Prevention System ...

Intrusion Detection System and Intrusion Prevention System ...

Intrusion Prevention l7 Filter

Intrusion Prevention l7 Filter

Cisco Wireless Local Area Network (WLAN) Access …...Cisco Wireless Local Area Network (WLAN) Access System with Integrated Wireless Intrusion Prevention System (wIPS) Security Target

Cisco Wireless Local Area Network (WLAN) Access …...Cisco Wireless Local Area Network (WLAN) Access System with Integrated Wireless Intrusion Prevention System (wIPS) Security Target

Host Intrusion Prevention Systems & Beyond

Host Intrusion Prevention Systems & Beyond

Hillstone S-Series Network Intrusion Prevention System (NIPS) · PDF fileHillstone S-Series Network Intrusion Prevention System ... Network Intrusion Prevention System (NIPS) ... Quadrant

Hillstone S-Series Network Intrusion Prevention System (NIPS) · PDF fileHillstone S-Series Network Intrusion Prevention System ... Network Intrusion Prevention System (NIPS) ... Quadrant

Intrusion Detection Systems and Intrusion Prevention Systems

Intrusion Detection Systems and Intrusion Prevention Systems

Wireless Network Security - D2B Informatique · 2020-05-25 · Wireless Network Security solutions ofer. Comprehensive security In addition to intrusion prevention, SSL decryption

Wireless Network Security - D2B Informatique · 2020-05-25 · Wireless Network Security solutions ofer. Comprehensive security In addition to intrusion prevention, SSL decryption

Intrusion Detection & Intrusion Prevention Systems

Intrusion Detection & Intrusion Prevention Systems

SQL Intrusion Prevention

SQL Intrusion Prevention

Wireless Intrusion Techniques

Wireless Intrusion Techniques

WildCAT Datasheet 20120910 - Secure Decisions...Existing wireless defenses such as wireless intrusion detection/prevention systems (WIDS/WIPS) and manual patrolling, also known as

WildCAT Datasheet 20120910 - Secure Decisions...Existing wireless defenses such as wireless intrusion detection/prevention systems (WIDS/WIPS) and manual patrolling, also known as

Cisco IPS Adaptive Intrusion Prevention · Cisco IPS Adaptive Intrusion Prevention ... and attack framework. ... Adaptive wireless protection

Cisco IPS Adaptive Intrusion Prevention · Cisco IPS Adaptive Intrusion Prevention ... and attack framework. ... Adaptive wireless protection

RIPE:Runtime Intrusion Prevention Evaluator

RIPE:Runtime Intrusion Prevention Evaluator