IBM last week announced an improved version of its wireless security monitoring tool, adding self-sensor and self-diagnosis capabilities.
Known as Distributed Wireless Security Auditor, the software runs on Linux-based desktops and laptops and as a thin client on personal digital assistants and other wireless devices.
The software can locate rogue and misconfigured WLAN (wireless LAN) access points and report the results to the central server. The software is essentially a wireless packet sniffer and is able to determine the location of access points based on their signal strength.
The DWSA system needs at least three of the wireless clients to pick out each access point to triangulate on its position, IBM said.
The security of wireless networks based on the 802.11b protocol has been suspect for years; researchers and security experts have found numerous ways to defeat the protocols WEP (Wired Equivalent Privacy) encryption. Consequently, many WLAN operators dont bother to activate WEP, leaving their networks transmissions completely open to snooping.
And as the price for WLAN access points has dropped over the past year, many administrators have found that users have bought and installed them without authorization, potentially opening a hole into the corporate network.
IBMs DWSA will be generally available later this year, and a Windows-based version is in the works.
- Protecting the WLAN
- Review: Wireless Sniffers Put to Test
- Sniffing Out Rogue Wireless LANs
- WLAN Data on the Loose