24×7 Wireless Intrusion Detection and Prevention
TCP Network Services scans all possible 802.11 channels (including the 200 extended channels), ensuring there are no blind spots where rogue devices may be hiding. TCP Network Services goes beyond Wi-Fi analysis with optional spectrum analysis that detects and classifies RF jamming attacks, Bluetooth devices and many other non-802.11 transmitter types, such as unapproved wireless cameras.
The Team of TCP Network Services constantly analyzes all wireless devices and traffic using a combination of frame inspection, stateful pattern analysis, statistical modeling, RF analysis and anomaly detection, enabling detection of hundreds of specific threats, attacks and vulnerabilities such as rogue devices, spoofed devices, DoS attacks, man-in-the-middle attacks, evil twins, as well as the most recent hacking tools and techniques such as MDK3, Karmetasploit and 802.11n DoS attacks.
Dynamic Threat Protection Technology
Dynamic Threat Update technology speeds the creation, automation and immediate deployment of new threat signatures through the TCP Network Services WIPS engine. As soon as any new threat definition is ready, it can be deployed with no impact to system operation, providing a unique framework for maintaining the most up-to-date WLAN security posture for the enterprise.
Threat Tracing, Blocking & Mapping
Threat Tracing, Blocking & Mapping All devices are traced using a suite of wired and wireless tracing methods to quickly and reliably determine if a device is connected to the wired network. The system uses a newly enhanced set of sophisticated techniques, including use of SNMP, automated switch discovery and hardware and traffic analysis to ensure accurate, fast tracing in any network topology.
Threats can be manually or automatically remediated with a combination of both wired and wireless threat suppression. Wireless blocking targets a threat at the source and specifically blocks the targeted wireless device from making any wireless connections. Wired blocking automatically closes the wired switch port where a threat has been traced.
All threats and devices can be located on a map or floorplan and set to trigger rogue alarms based on the device’s location.
Massive Scalability & System Resiliency
TCP Network Services offers the only solution in the industry to meet the established standards of a mission critical security application. It is the only system to build fault-tolerance into each component, with fail-over boot images in every sensor and automatic server fail-over licenses that come standard with the system. Additionally, TCP Network Services Wireless sensors can operate as fully independent IDS/IPS nodes detecting and remediating threats without losing information, even if the network connection to the server is lost for days.
With intelligent sensors that locally analyse WiFi and RF conditions, more than 1,000 sensors can be supported through single centralized server in the data center, requiring minimal network bandwidth.
Processing at the sensor level means that each sensor continues to enforce the security policy even if a connection to the server is lost for more than 24 hours. Hot standby server software (included) enables fully redundant data center operations for maximum wireless security protection.
Event Forensics
TCP Network Services can capture a complete packet or RF forensic record of any network event, allowing appropriate staff to investigate the issue in depth, at any time. By leveraging its unique intelligent sensors, TCP Network Services provides the only solution in the industry to automatically capture forensic information from before, during and after the event.
Performance Monitoring and Remote Troubleshooting
In addition to rich security features, TCP Network Services constantly monitors the health of the wireless LAN and RF environment to proactively detect evolving problems that can lead to an interruption to the network. The system detects these issues, gives engineers topical remediation advise and includes active remote tools to troubleshoot the issue. This allows staff to avoid network downtime and vastly reduce the time-to-fix for any outage, leading to more uptime, improved user satisfaction and a higher performing network.
Integrated 802.11n and Spectrum Intelligence
The TCP Network Services WIPS system can monitor the RF Spectrum and 802.11n traffic. TCP Network Services performs a complete interference analysis of the air. This includes co-channel interference from Wi-Fi devices, as well as optional spectrum analysis of non-Wi-Fi devices, such as microwave ovens, cordless phones or legacy wireless equipment.
TCP Network Services goes beyond simple 802.11n support to provide managers with hands-on 802.11n optimization tools and intelligence focused on real-world performance and network throughput. Tools include live diagnostics of any 802.11n connection that automatically highlights and explains how performance can be improved.
Automated Business and Regulatory Compliance Reporting
TCP Network Services provides automated compliance reporting for all major network regulations including PCI, HIPAA, Sarbanes-Oxley, GLBA and more. Reports provide instant visibility into issues that may need to be addressed for compliance and exactly what needs to be fixed. Reports can be scheduled to run and delivered automatically, ensuring a complete library of regulatory reports in the case of an audit.