FIPS Validated i WLAN

Similar documents
802.11ac FREQUENTLY ASKED QUESTIONS. May 2012

Requirements for Building Effective Government WLANs

The Aruba S3500 Mobility Access Switch

The Aruba Mobile Virtual Enterprise for Government. The Next Generation Network Access Architecture for Mobile Technology

Technology Solution Guide. Deploying Entuity s Eye of the Storm with Aruba Networks Secure Mobility Solution

PRODUCT LINE MATRIX: Mobility Controllers

PRODUCT GUIDE Wireless Intrusion Prevention Systems

Technology Solution Guide

ARUBA NETWORKS DESIGNS AND DELIVERS MOBILITY-DEFINED NETWORKS THAT EMPOWER A NEW GENERATION OF TECH-SAVVY USERS

White paper. Combatant command (COCOM) next-generation security architecture

AIRPLAY AND AIRPRINT ON CAMPUS NETWORKS AN ARUBA AIRGROUP SOLUTION GUIDE

Mobility Optimized Access Layer

With Aruba Central, you get anywhere-anytime access to ensure that your network is up and performing efficiently.

White Paper. Bring Your Own ipad to Work

Wireless Field Data Backhaul

Creates a Feature-Rich, Enterprise-Grade Wireless LAN

Connectivity to Cloud-First Applications

ARUBA RAP-3 REMOTE ACCESS POINT High-performance wireless and wired networking for branch offices and teleworkers

ARUBA RAP-3 REMOTE ACCESS POINT

ARUBA MULTIZONE DATA SHEET

The Economic Benefits of a Cooperative Control Wireless LAN Architecture

Technology Solution Guide

Solution Architecture

Traffic Management Solution: Allot NetEnforcer and Juniper Networks Session and Resource Control (SRC) Platform

Hitachi Unified Compute Platform Pro for VMware vsphere

ARUBA INSTANT IAP-92 and IAP-93 ACCESS POINTS

ARUBA AIRWAVE. Management and monitoring for multi-vendor campus networks DATA SHEET CONNECTIVITY ANALYTICS REAL-TIME MONITORING AND VISIBILITY RAPIDS

Aerohive and IntelliGO End-to-End Security for devices on your network

ARUBA 100 SERIES ACCESS POINTS

Advanced ODBC and JDBC Access to Salesforce Data

THE POWER OF WiNG SIMPLIFIED

ARUBA, A HEWLETT PACKARD ENTERPRISE COMPANY, IS REDEFINING THE INTELLIGENT EDGE WITH MOBILITY AND IOT SOLUTIONS FOR ORGANIZATIONS

Enhancing the Cybersecurity of Federal Information and Assets through CSIP

One Release. One Architecture. One OS. High-Performance Networking for the Enterprise with JUNOS Software

About Activu. LARGE-SCALE VISUALIZATION AND COLLABORATION SOLUTIONS for Command and Control. Smart Solutions for Smart Organizations

ARUBA AIRWAVE. Visibility and management for multi-vendor access networks DATA SHEET REAL-TIME MONITORING AND VISIBILITY

Samsung Security AP WHITE PAPER

BROCADE ARUBA PARTNERSHIP ANNOUNCEMENT FREQUENTLY ASKED QUESTIONS

Wireless Mobile Workforce

Aligning Agency Cybersecurity Practices with the Cybersecurity Framework

Juniper Networks and Aerohive Networks: Cloud-Enabled Solutions for the Enterprise

JUNIPER NETWORKS AND AEROHIVE NETWORKS: CLOUD- ENABLED SOLUTIONS FOR THE ENTERPRISE

BlackBerry Enterprise Identity

Inmarsat Global Xpress. Global, Mobile, Trusted.

Wireless LAN Solutions

Cisco Cloud Services Router 1000V and Amazon Web Services CASE STUDY

SOLUTION BRIEF Enterprise WAN Agility, Simplicity and Performance with Software-Defined WAN

Architecture Overview

Mesh Wide Area Network AP Elevating Bandwidth to the n th Power

SOLUTION BRIEF EXTREMEWIRELESS WiNG AZARA AZARA. WiNG RISE TO THE CHALLENGE OF PROVIDING SUPERIOR CONNECTIVITY & WLAN MANAGEMENT

BeOn Security Cybersecurity for Critical Communications Systems

Who s Protecting Your Keys? August 2018

Nokia Passive Optical LAN solution

BlackBerry 2FA. Datasheet. BlackBerry 2FA

THE WORLD S BEST- CONNECTED DATA CENTERS EQUINIX MIDDLE EAST & NORTH AFRICA (MENA) Equinix.com

Benefits of SD-WAN to the Distributed Enterprise

Mitigating Branch Office Risks with SD-WAN

JUNIPER NETWORKS PRODUCT BULLETIN

ShoreTel Network Services Portfolio

NGN: Carriers and Vendors Must Take Security Seriously

CASE STUDY INSIGHTS: MICRO-SEGMENTATION TRANSFORMS SECURITY. How Organizations Around the World Are Protecting Critical Data

802.11n in the Outdoor Environment

ARUBA RAP-3 REMOTE ACCESS POINT

PoE Midspans Harness Universal Power for Your Network. White Paper

Aruba ridefinisce il futuro del Mobile, Cloud e IoT

HOSPITALITY. The Home Away From Home

Secure & Unified Identity

ARUBA RAP-3 REMOTE ACCESS POINT

AP 300 Access Port. Wireless Switch System. Next-Generation Access Ports: More Functionality at a Lower Cost WIRELESS LANS

Aruba and Ekahau Joint Design and Implementation

Wireless and Network Security Integration Solution Overview

Mitel Cloud VOIP. Integration Guide

Hardware Capabilities. Product Brief: SDC-PC20G g PCMCIA Card with Integrated Antenna

Introduction to Juniper Networks Wireless LANs (IJWL)

RSA Solution Brief. Providing Secure Access to Corporate Resources from BlackBerry. Devices. Leveraging Two-factor Authentication. RSA Solution Brief

Datacryptor AP Layer 3 IP Encryptor

Brocade and Aruba Deliver Secure and Effortless Mobility for the Public Sector

Ruckus ZoneDirector 3450 WLAN Controller (up to 500 ZoneFlex Access Points)

The power of Wing. simplified

ATA DRIVEN GLOBAL VISION CLOUD PLATFORM STRATEG N POWERFUL RELEVANT PERFORMANCE SOLUTION CLO IRTUAL BIG DATA SOLUTION ROI FLEXIBLE DATA DRIVEN V

ARUBA CLEARPASS POLICY MANAGER

Product Line Matrix: Instant Access Points. 100 Series Instant APs. 90 Series Instant APs

The Cisco BYOD Smart Solution

Reaping the Full Benefits of a Hybrid Network

QuickSpecs. Aruba Airwave Usage Licenses. Overview. Aruba Airwave Usage Licenses. Product overview. Features and Benefits

Using Red Hat Network Satellite to dynamically scale applications in a private cloud

Critical Infrastructure Protection for the Energy Industries. Building Identity Into the Network

IxChariot Roaming Test Plan

Optimizing Pulse Secure Access Suite with Pulse Secure Virtual Application Delivery Controller solution

ARUBA 7000 SERIES MOBILITY CONTROLLER

Product Brief: SDC-PE15N n PCIe Module with Antenna Connectors

SOLUTION OVERVIEW THE ARUBA MOBILE FIRST ARCHITECTURE

Notice of Intent to Award a Sole Source Contract

Achieving a FIPS Compliant Wireless Infrastructure using Intel Centrino Mobile Technology Clients

Implementing and Administering Security in a Microsoft Windows 2000 Network Course 2820 Five days Instructor-led Published: February 17, 2004

PowerConnect W-Series...Mobility Controllers. Validated Reference Design Version 8

THE BEST LOW-COST CAPACITY BOOST FOR ACCESS NETWORKS IS ALSO THE GREENEST

Odyssey Access Client

Aruba Case Study. Educause. Overview. Requirements

TAKE PRODUCTIVITY AND COLLABORATION TO THE NEXT LEVEL WITH A DEPENDABLY SUPERIOR WIFI EXPERIENCE

Transcription:

Tech Brief Government FIPS Validated 802.11i WLAN Meeting Government Requirements for Secure Mobile Data

Situation From the boardroom to the battlefield, no entity has a greater need for mobile communications than the Government. Until recently, however, WLAN technology has been a trade off between increased productivity and security. To take advantage of wireless technologies, the only option for government agencies, per Department of Defense Directive (DoDD) 8100.2, was to deploy a Layer 2 encryption overlay on top of their wireless infrastructure. While this solution provided encryption, it was still not sufficient for securing wireless networks carrying sensitive information, lacking key components such as secure authentication, access control and wireless intrusion detection. In addition these networks were extremely cumbersome to manage as they lacked centralized management (for the Access Points and the security overlay) and automated RF management. Access Points (AP s) on a distributed architecture simply can t deliver the degree of security and manageability necessary for Government agencies. Solution Aruba Networks took a fundamentally different approach to WLAN security by centralizing the architecture and delivering a user centric solution. Aruba utilizes a centralized architecture to maintain a single point of security control thereby integrating the multiple disparate components a user would utilize to access their network. Where traditional thin-ap architecture of a distributed network offloads wireless traffic at the access point, the Aruba solution aggregates all encrypted traffic and is therefore able to monitor all wireless activity for all stations at the mobility controller while ensuring complete encryption from one end of the network to the other. Key Benefits Single Point of Security Control Universal Authentication Role-based Access Control Stateful Firewalls High-Speed Encryption Hardware-based Processing Automatic Client Blacklisting Flexible Policy Creation 1 FIPS Validated 802.11i WLAN Aruba Networks

Equally important to Government agencies, the Aruba User Centric network, as the name implies, is based on user identity, not Access Point or device IP addresses. Mobile users and devices, by definition, do not connect to the network through a fixed port. For this reason, the network must identify every user and device that joins the network. Once this identity is known, custom security policies may be applied to the network so that only appropriate access is provided based on specific departments or groups, security clearance, or the actual position of a user. This followme security based on user roles drastically improves network security by eliminating excess privileges on the network while providing identity-based auditing. The Ideal Solution for the Federal Government s Robust Network Security Requirements The Aruba solution offers a comprehensive FIPS validated 802.11i solution today. For wireless clients that do not support 802.11i protocols yet, an interim step to 802.11i is provided by xsec, an Aruba Juniper Networks jointly developed, standards-based Layer 2 encryption protocol. xsec also provides FIPS 140-2 validated security for wired clients, legacy access points, and legacy mobile devices that do not currently support 802.11i. Because of its centralized architecture, Aruba s mobility controller delivers unmatched encryption processing power and a design where no encryption keys are stored anywhere outside the controller. The Aruba mobility platform delivers a complete FIPS 140-2 validated solution that meets the Federal government s stringent requirements as defined in the DoD policy 8100.2 and its addendum, while addressing 802.11i and non-802.11i compliant devices alike. Key Features / Benefits Superior Architecture A centralized and programmable encryption architecture ensures scalability and unmatched security. As new encryption protocols emerge, the mobility infrastructure can be upgraded with minimum disruption. The contained encryption boundary offered by Aruba s mobility controller architecture sets the standard for best practices in security key distribution and management in wireless networks. Government organizations can leverage commercial off-the-shelf (COTS) technologies available for the 802.11i wireless security standard for their wireless deployments, keeping purchasing costs low. The adoption of COTS technologies for wireless security by the Federal government also significantly lowers costs associated with user training, administration, and updates, while increasing a user s familiarity with the products. Legacy wireless clients that do not support 802.11i can be secured with xsec, a FIPS validated Layer 2 encryption technology, leveraging existing equipment. 2 FIPS Validated 802.11i WLAN Aruba Networks

Solution Components Aruba Mobility Controllers: Aruba mobility controllers are the centralized intelligence behind the Aruba User Centric mobility solution. Mobility controllers provide a single point of management and control for all the components needed to deploy a secure WLAN solution including a stateful identity based policy enforcement firewall, Wireless IDS, Client integrity, Layer 2 encryption and remote access. Aruba mobility controllers are available for a range of applications from small office to large data centers. Aruba mobility controllers are FIPS 140-2 validated for 802.11i and xsec. Aruba Access Points: Aruba access points are designed to maximize coverage and throughput for dense deployments in a range of environments. Access points do not terminate encrypted traffic to maintain information integrity over the wireless and wired connection so they do not require FIPS certification. Aruba access points are self-configuring, self-healing and remotely managed. Aruba access points can be deployed across a Layer 2/3 network and even across a public network to connect to the centrally located mobility controller. They can also act as a standalone Air Monitors for Wireless IDS applications and perform remote packet-capture for troubleshooting. 3 FIPS Validated 802.11i WLAN Aruba Networks

About Aruba Networks Aruba is the global leader in distributed enterprise networks. Its award-winning portfolio of campus, branch/teleworker, and mobile solutions simplify operations and secure access to all corporate applications and services - regardless of the user's device, location, or network. This dramatically improves productivity and lowers capital and operational costs. Listed on the NASDAQ and Russell 2000 Index, Aruba is based in Sunnyvale, California, and has operations throughout the Americas, Europe, Middle East, and Asia Pacific regions. To learn more, visit Aruba at http://www.arubanetworks.com. For real- time news updates follow Aruba on Twitter, Facebook, or the Green Island News Blog. 4 FIPS Validated 802.11i WLAN Aruba Networks

1344 Crossman Ave. Sunnyvale, CA 94089-1113 Tel. 408.227.4500 Fax. 408.227.4550 1-866-55-ARUBA info@arubanetworks.com http://www.arubanetworks.com 2011 Aruba Networks, Inc. AirWave, Aruba Networks, Aruba Mobility Management System, Bluescanner, For Wireless That Works, Mobile Edge Architecture, People Move. Networks Must Follow, RFprotect, The All Wireless Workplace Is Now Open For Business, Green Island, and The Mobile Edge Company are trademarks of Aruba Networks, Inc. All rights reserved. Aruba Networks reserves the right to change, modify, transfer, or otherwise revise this publication and the product specifications without notice. While Aruba uses commercially reasonable efforts to ensure the accuracy of the specifications contained in this document, Aruba will assume no responsibility for any errors or omissions. Note: All scaling metrics outlined in this document are maximum supported values. The scale may vary depending upon the deployment scenario and features enabled. TB_FIPS_US_110104

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback