AirStorm
Wireless Intrusion Detection
Identify and Protect your Wireless Networks from Common Threats with 24x7 Compliance Monitoring Wireless Intrusion DetectionAirStorm, part of the RandomStorm range of advanced vulnerability scanning products, provides network managers with an instant, 24/7 analysis of their Wireless LAN infrastructure; maintaining an up to date record of all the installed 802.11 based wireless devices, identifying and reporting any suspect activity and helping to pin-point the location of rogue access points.
Wireless Intrusion Detection
Designed to be deployed as an integral part of the corporate security shield, AirStorm is an essential tool used by organisations to help prevent ‘back-door’ data leakage and manage network access in line with the latest PCI compliance standard and data protection legislation.
The Wireless Network can be the ‘Achilles Heel’ of any organisation in terms of enterprise security and is increasingly exploited by hackers, using relatively cheap and unsophisticated technology, to get round the corporate IPS defence systems. AirStorm continually monitors 802.11traffic within range of the Wireless LAN, recording client activity, verifying the authenticity of the connected access points, alerting security managers when a new access point is detected and when an untrusted connection is made by an internal user.
AirStorm Functionality
AirStorm Provides the following functionality:
- Automated monitoring of all access points in range of the corporate WLAN
- Provides real-time information on all 802.11 WLAN activity
- Granular, trust –based, classification system of all active access points
- Rogue access point detection alerting via SMS or email
- Customisable usage reports
- WLAN intrusion detection alerting and reporting
- Supports location detection and device blocking tasks
AirStorm - WLAN Scanning and Security
AirStorm can be fully integrated as a feature within a RandomStorm iStorm and xStorm vulnerability scanning solution configured to provide routine periodic scans mandated as part of the PCI v1.2 compliance procedures. Alternatively it can be can be installed as a standalone, ad hoc back-up tool to help maintain 24/7 corporate security compliance.
AirStorm Dashboard
Accessed via iStorm’s user friendly browser interface or xStorm’s graphical management dashboard, AirStorm provides details of all trusted and untrusted wireless devices within range of the corporate WLAN, monitoring individual user activity, logging usage and providing useful information on all access point devices including manufacturer, model and encryption protocol.
Applications of AirStorm
AirStorm can be used by a wide a range of organisations, from a small office environment to large scale businesses located in multi-floored office blocks and multiple locations, to help protect sensitive data such as employee records, company financial information and customer details.
As an always-on system AirStorm can also be used as an additional back-up to any content monitoring technology installed on the network, helping to control the use of personal laptops or wireless enabled mobile devices that may be used to access unauthorised Web sites from inside the organisation.
Set up and Installation
AirStorm is simple to install whether it is as part of a RandomStorm vulnerability management platform or as a standalone system. Using the latest long range, high-grade antennas the system can be managed using a standard PC connected directly, via a router to an xStorm appliance or via a browser to the iStorm cloud-based service.
Regulatory Compliance
Any company that stores personal information on employees or customers is required to maintain the highest levels of security to order to comply with strict industry and government regulations such as PCI, CoCo, HIPPA and SOX. Organisations that fail to meet the standards face possible restrictions on the core business operations and severe financial penalties if they are responsible for data being lost, stolen or compromised.
Businesses that accept card payment transactions are required under PCI compliance regulations to carry out vulnerability scans of their entire corporate networks every three months. This includes identifying and restricting access to any wireless device within range of the core network, including rogue access devices and legitimate neighbouring WLANs. In addition network managers are expected to routinely change wireless device passwords, enforce strict WLAN usage policy and ensure traffic passing across the network is fully encrypted.
AirStorm, like all RandomStorm scanning technology, has been designed to streamline and simplify the whole PCI compliance process including specially reporting options, formatted ready for submission in line with the quarterly PCI Scan requirements.