email article printer friendly

Roll Out a Secure Wireless Solution
by Danielle Ruest and Nelson Ruest

As we discuss in our Security Strategies column in this issue, "Secure Wireless for the Enterprise," Windows systems offer a basic level of security and functionality when it comes to wireless computing. If these basic levels aren't enough for you, you can add additional security layers with specialized products. For instance, you can use an all-in-one security solution, avoiding the complexity of building your own, under Windows. You can also select individual products to provide specific functionalities you deem essential to your particular infrastructure.

This table lists support offered in several different categories. While it isn't a comprehensive list, it does provide a good overview of what's available. For more products and technologies, visit the Wi-Fi Alliance Web site.

Communications Security
Product	Vendor	Web site	Description
AirFortress Gateway	Fortress Technologies	www.fortresstech.com	Gateway technology that provides security through encryption at the data link layer of the OSI Networking Model, bridging the wireless LAN and your enterprise network. Client software works with Windows Embedded, Palm, Windows, and even DOS.
movian	Certicom	www.certicom.com	Suite of mobile security products that includes support for digitally signed e-mail, highly secure wireless virtual private networks (VPNs), and encrypted data on wireless devices. It also provides remote policy-oriented management through movianDM. Recommended for highly secure environments. movianMail supports Windows Embedded; movianCrypt supports Palm and Pocket PC; movianVPN supports Palm, Windows Embedded, and Symbian operating systems; and movianDM runs on Windows NT/2000/XP.
Norton Internet Security 2003	Symantec Corp.	www.symantec.com/ sabu/nis/nis_pe/	Provides connection protection, alerting users when the PC is about to initiate a wireless connection and letting them terminate it if desired. Supports Windows systems.
PDA Defense Enterprise	Asynchrony Solutions Inc.	www.pdadefense.com/ enterprise.asp	Provides 128- or 512-bit encryption and supports central password, encryption, and beaming policy-based management. It can even delete all or part of the data found on a device if tampering is detected automatically. Supports Palm, Windows Embedded, and RIM BlackBerry devices.
SecureSmart	Perfigo Inc.	www.perfigo.com/ products.html	Provides integrated communications security through IPSec with Triple DES encryption. Supports policy-driven central control. Detects rogue access points. Acts as a gateway to protect wired networks from unauthorized wireless clients. Can integrate with management frameworks such as Tivoli, HP OpenView, or CA Unicenter. Client program supports Windows, Windows Embedded, Cisco VPNs, and Mac OS.
Telepathy	Baltimore Technologies	www.baltimore.com/ wireless/index.asp	PKI-based security solution provides encryption and digital signatures through the use of digital certificates. Supports Palm and Windows Embedded, and development software runs on Windows or Unix.
Trusted Mobility Suite	Trust Digital	www.trustdigital.com/ prod1.htm	Encrypts data with Advanced Encryption Standard (AES) or Triple Data Encryption Standard (DES). Supports central security policy definition as well as communication through VPNs. Provides eight products covering different mobile security needs. Can expand to include all systems. Runs on Palm, Windows Embedded, Symbian OS, BlackBerry, and Smartphones.
Security Plus	Palm	www.palm.com/ pdfs/wireless_ent_apps.pdf	Add on to the Tungsten Mobile Information Management solution that provides central administration of mandatory passwords and password policies as well as encryption and application access. For Palm i705 and m500 series, including Tungsten.
WirelessWall Software Suite	Cranite Systems	www.cranite.com/ product_overview.htm	Entire suite uses the Advanced Encryption Standard (AES) to encrypt communications. Includes Policy Server, Access Controller that segregates wireless LAN automatically from connected network and client software. Can integrate with any LDAP directory, including Active Directory. Tested at the United States Military Academy at West Point. Supports Windows, Windows Embedded, Mac OS, and Linux.