Feeds

Cisco builds WLAN security framework

Extend, embrace and control

  • alert
  • submit to reddit

High performance access to file storage

The Register's Wireless LAN Channel

Cisco Systems this week introduced an architecture designed to make wireless LANs easier to manage and more secure.

Cisco's Structured Wireless-Aware Network framework, which includes a series of enhancements and additions to its hardware portfolio and new software capabilities, are also designed to head of the threat of competitors using wireless LANs as a bridgehead to attack Cisco's core enterprise networking market.

Cisco's pitch is that its framework provides the security, scalability, and reliability that enterprises need to run core business applications over a wireless LAN network. To enjoy these benefits to the full, corporates need to standardise on a Cisco-only network.

"The advantages of a 'wireless-aware' Cisco switch and router infrastructure combined with a Cisco wireless network include a common management and robust security scheme, simplified deployment and operation, centralised control and configuration of thousands of networking devices, the ability to detect rogue access points, fast secure roaming for mobile applications and self-healing networks for improved wireless up-time," the pitch continues.

Cisco foreshadowed these enhanced management capabilities when it discussed its wireless LAN strategy last week. Critics have already dubbed these increased functions as a Trojan-horse ploy. There again criticising Cisco as proprietary is a bit like criticising a boxer for hitting people - that's what it does. "There's one way, it's our way and it's only way", is the standard Cisco line, and part of what's made the firm so successful.

The specs

Cisco Structured Wireless-Aware Network infrastructure enhancements will be integrated in Cisco Aironet 1100 and 1200 Series Access Points (AP), Cisco Catalyst 3750, 4500 and 6500 Series Switches and Cisco 2600XM and 3700 Series Routers. Other components of the solution include CiscoWorks Wireless LAN Solution Engine (WLSE) for management and monitoring, Cisco Secure Access Control Server for centralised authentication and Cisco and Cisco Compatible client adapters for Radio Frequency (RF) monitoring and measurement.

Combined with CiscoWorks WLSE 2.0, a platform that supports up to 2,500 APs in a single, centralised appliance, the following Cisco Structured Wireless-Aware Network capabilities are available as a Cisco IOS Software upgrade for the Aironet 1100 and 1200 APs:

  • Wi-Fi Protected Access (WPA) support for certified and interoperable security
  • Fast secure roaming provides mobility within and between subnet boundaries for latency sensitive applications such as wireless voice over IP, using standards based IEEE 802.1x authentication
  • IEEE 802.1x local authentication service for remote site, Wide Area Network

With the subsequent release of CiscoWorks WLSE v2.5 and a corresponding Cisco IOS Software upgrade, additional security and management capabilities including:


  • Security enhancements for active detection, blocking and graphical depiction of the location of rogue APs; alerts on security policy deviations
  • Dynamic RF management permitting innovative assisted site survey and automatic accommodation of changes in the wireless LAN infrastructures

Alongside this framework, Cisco introduced the Aironet 1400 Series Wireless Bridge, an outdoor wireless bridge designed to provide cost-effective wireless connectivity among multiple network locations within a metro area. The bridge supports point-to-point ranges up to 7.5 miles and at point-to-multipoint ranges up to 2 miles. Through the use of higher gain antennas or lower data rates, extended ranges in excess of 20 miles point-to-point can be achieved.



The Cisco Aironet 1400 Series Wireless Bridge will cost from $4,999 in the US and begins shipping this month.

Cisco also introduced Cisco Secure Access Control Server Solution Engine 3.2, a "hardened" security / authentication appliance, with US list price of $11,995, also scheduled to begin shipping this month.

Cisco Structured Wireless-Aware Network enhancements will initially be available on Cisco Aironet 1100 and 1200 APs, with functions introduced between this month and the end of the calendar year. These features will be migrated to other Cisco IOS Software-based platforms, including the Cisco Catalyst 3750, 4500 and 6500 Series Switches and Cisco 2600XM and 3700 Series Routers, starting next year. ®

Related stories

Sybase pumps $25m into Wi-Fi bubble
Road warriors, we're coming ATT ya
Why enterprise WLANs need wireless gateways
We'd love to go wireless but what about security?

The Register's Wireless LAN Channel

High performance access to file storage

More from The Register

next story
A black box for your SUITCASE: Now your lost luggage can phone home – quite literally
Breakfast in London, lunch in NYC, and your clothes in Peru
Broadband Secretary of SHEEP sensationally quits Cabinet
Maria Miller finally resigns over expenses row
Skype pimps pro-level broadcast service
Playing Cat and Mouse with the media
Beat it, freetards! Dyn to shut down no-cost dynamic DNS next month
... but don't worry, charter members, you're still in 'for life'
Like Google, Comcast might roll its own mobile voice network
Says anything's possible if regulators approve merger with Time Warner
EE dismisses DATA-BURNING glitch with Orange Mail app
Bug quietly slurps PAYG credit - yet EE denies it exists
Turnbull leaves Australia's broadband blackspots in the dark
New Statement of Expectations to NBN Co offers get-out clauses for blackspot builds
Facebook claims 100 MEEELLION active users in India
Who needs China when you've got the next billion in your sights?
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.