Newbury Networks Inc. this week introduced the latest version of its Wi-Fi security software, which uses both location and behavior patterns to monitor a network for rogue access points.
WiFi Watchdog 5.0 is server-side software that uses location technology for intrusion prevention and detection, client protection, and rogue access point containment.
Location helps determine not only what is a threat, but what isnt, officials said. This aids in eliminating false positives in intrusion detection, helping to differentiate a true rogue access within the walls of a customers company from an unsecured access point in the company next door, said officials at the Boston-based company. WiFi Watchdog 5.0 both classifies the type of attack and identifies the physical location of the source of the attack, officials said.
“If a neighbor has a rogue, the system monitors it but only alerts you if one of your clients tries to connect to it,” said Brian Wangerien, director of product management at Newbury Networks. “The notion is to keep an eye on every single thing, but only alert you when something affects devices or access points inside your location.”
On the other hand, the software can deny access to a client based on both location and behavior, and quarantine those clients that are identified as risky, officials said.
The software also identifies when an authorized network user connects to an unauthorized wireless LAN, even if the unauthorized WLAN is an attackers access point set up to look exactly like a valid access point (with a valid MAC address and SSID), officials said.
The software also includes a Graphical Alert Viewer, which pinpoints attacks down to a particular room and floor of a company, officials said.
WiFi Watchdog 5.0 will be out in early release at the end of the summer and commercially available in September. Pricing starts at $14,995.
