OPSEC Partners
AirPatrol Corporation
Product Version Certified: Version 2.0
Certified For Use With: Check Point Next Generation with Application Intelligence, Check Point SecureClient VPN Client, Check Point Integrity Endpoint Firewall
Product Description:
AirPatrol Wireless Policy Manager
Wireless Policy Manager (WPM) allows administrators to create security policies for laptops and mobile devices and maintain compliance with industry regulations. Using the intuitive Wireless Policy Manager interface, network administrators can define wireless connectivity policies to control how, when, where and if users can connect to wireless networks.
AirPatrol Wireless Locator System
Wireless Locator System (WLS), featuring AirPatrol’s revolutionary MapView™ technology, monitors the airwaves 24 x 7 to provide a live enterprise-wide view of network posture at a single glance. With the ability to detect and locate all authorized and unauthorized 802.11, RF and cellular devices with an accuracy of 15 feet or better, the Wireless Locator System enables enterprises to proactively identify potential threats and compliance issues.
Company Description: AirPatrol Corporation offers an end-to-end suite of location-based mobile and wireless infrastructure and endpoint security solutions that enable businesses to keep pace with the expanding requirements of a wireless world. Based on an expert understanding of the wireless security and performance issues that plague enterprises and government agencies, AirPatrol delivers the capabilities customers need to confidently deploy, manage and protect networks against present and future mobile and wireless threats. AirPatrol is a privately held company with offices in the US and Canada. For more information, please visit the AirPatrol website.
Key Features and Benefits
AirPatrol Wireless Policy Manager (WPM):
Wireless Policy Manager allows administrators to create security policies for laptops and mobile devices and maintain compliance with industry regulations. Using the intuitive Wireless Policy Manager interface, network administrators can define wireless connectivity policies to control how, when, where and if users can connect to wireless networks. Policies can be documented as required to comply with industry mandates such as Health Insurance Portability and Accountability Act (HIPAA)", Sarbanes-Oxley Act (SOX), and Payment Card Industry (PCI) using the convenient reporting tools.
Wireless Policy Manager is tightly integrated with various Check Point solutions, including the Integrity end-point firewall and the SecureClient VPN client. Wireless Policy Manager can be configured to automatically launch a VPN client and to enforce the presence of an end-point firewall whenever a wireless network is used – allowing network administrators to confidently control how, when, and where users can connect to wireless networks.
The Wireless Policy Manager system is comprised of two components: the Wireless Policy Manager console and the Wireless EndPoint Client. The Wireless Policy Manager console helps network administrators define wireless connectivity policies to be enforced using the Wireless EndPoint Client, which is installed on users' laptops. The Wireless EndPoint Client prevents unauthorized access to data stored on laptops and potential bridging to connected networks by automatically disabling the automatic Wi-Fi capabilities standard on today’s most common wireless-enabled computer platforms.
Together, Wireless Policy Manager and Wireless EndPoint Client can:
- Enable the use of the Check Point VPN client to prevent automatic connections to potentially insecure access points
- Control requirements for minimum levels of security (WEP, WPA PSK or WPA) for home networks
- Enforce the presence of an Integrity or other end-point firewall whenever a wireless network is used
- Set service set identifiers (SSIDs) policies and controls
- Prevent wireless-enabled hacking attacks such as Wi-Phishing and Evil Twin Attacks
- Enforce wireless connectivity policies and best practices
- Automatically detect and connect to pre-defined, safe Wi-Fi networks
- Allow users to instantly set-up secure ad-hoc networks and to share resources (such as a high-speed connection to the Internet) and data within a workgroup – without requiring a wireless access point
AirPatrol Wireless Locator System (WLS):
The AirPatrol Wireless Locator System (WLS) provides the actionable intelligence network administrators need to confidently manage wireless threats to their wired and wireless networks. WLS can be used as an Intrusion Detection solution in “no-wireless” environments and easily scales to protect and manage wireless networks. Using AirPatrol's revolutionary VirtualShield™ technology with a Check Point firewall, network administrators can prevent unauthorized wireless clients from accessing the wired LAN and beyond, containing these threats to the WLAN itself.
WLS is tightly integrated with the Check Point VPN-1 Edge W device and Check Point SMART (Security Management Architecture). WLS supports today’s most common network architectures utilizing industry-standard Check Point firewalls for traffic blocking and threat mitigation strategies. This unique approach offers the industry unprecedented scalability and flexibility in a wireless LAN solution.
The WLS solution can be deployed as a robust wireless Intrusion Detection and Location Solution (IDLS) to secure and enforce no-wireless policies or as a powerful wireless network management tool with the most powerful wireless IDLS capabilities in the industry.
- Dramatically reduces the cost and time-to-deployment – can be deployed in minutes instead of weeks
- Uses a cutting-edge graphical user interface to identify the precise location of all authorized and unauthorized wireless devices in real-time
OPSEC Integration
The AirPatrol WLS solution integrates with the Check Point SmartConsole application, leveraging the SAM (Suspicious Activity Monitoring) API. This allows users to automatically block unauthorized wireless devices from accessing network resources by issuing block commands through the SAM API.
Additional Information