Could your business use wireless LAN?
- Page 2
|
|
Indeed, the sophistication of the security policies deployed to support a new WLAN installation in many cases actually results in the wireless network being more secure than the wired network.
The reason for this is that the vulnerability of standard computer sockets has long been overlooked, as they have always been within the physical confines of the organisation (with access to them subject to the building’s physical security).
Meanwhile, the highly effective WLAN security technology that prevents unauthorised access from, say, the car park is equally effective within the building.
This point may be old news for those organisations with tightly controlled physical security, but in organisations where there is a through-put of outsiders (e.g. businesses providing services on their premises), it represents food for thought.
What is the point of having secure WLAN if outsiders can gain network access via any of the wall/floor sockets?
It is for this reason that WLAN can be the catalyst that prompts IT managers to review their policies and demand higher standards of wired security than they have had in the past.
Another area in which there have been significant advances is laptop security. It is one thing to ensure that an installed WLAN is fully secured, but if general use of WLAN is also prompting users to connect at home and to public hotspots, then the vulnerability of these machines needs to be considered.
Installation of dedicated agent software onto laptops creates the ability to extend enforcement of company data security policies out into the field.
The final piece of the jigsaw is dealing with any threats that do manage to find their way onto the network.
As these threats can come from a variety of sources and not just wireless devices, we recommend deployment of a network-wide Intrusion Prevention appliance, such as TippingPoint, that scans all network traffic to identify attacks and implement countermeasures.
Implementation Process
It is all well and good addressing the security and management concerns associated with WLAN, but success or failure is really dependant on the implementation process.
Development of a wireless installation starts with an assessment of customer requirements.
We believe the following process works:
1) Physical survey to identify radio locations
2) Project design and scoping
3) Cabling and physical infrastructure upgrades
4) Configuration and installation
5) Support and maintenance
The number of users expected within each physical area is included in the plan. At this stage, ascertain the provenance and suitability of client devices to be included in the wireless network.
Once users and devices have been properly identified, it becomes possible to discuss ways the network should be managed and answer questions such as whether guest access is to be provided (and if it should be charged for), how each user/device group is to be secured and how the network is going to be managed.
Network pre-qualification is an important part of this initial work. This not only ensures that your hardware is capable of supporting wireless traffic but also takes into consideration any necessary integration with existing security policy.
Working with what you’ve got should cut your overall cost. Once the audit is complete you’ll be able, via your provider or a consultancy, to start deploying.
The costs
Finally, what does all this cost? In terms of the cost of implementation, for a company employing around 100 where four or five access points will be needed (each can support between 20-25 users) you’re looking at around £8,000.
This encompasses hardware, software, configuration, CAD processing, network integration and one year’s support and maintenance. The larger number of people that are covered, the greater the efficiencies of scale.
