Connect802 is a nationwide wireless network equipment reseller providing system design consulting, equipment configuration, and installation services.

 

CSS Mega Menu Css3Menu.com

 

 

Data Privacy, Encryption and Authentication Capable of Meeting Federal Government and Department of Defense Guidelines

Advanced security options up to and including Federal Information Processing Standards (FIPS) compliance levels

Security Through Data Encryption and User Authentication to Protect Your Network

EZ Suite Shield and EZ Suite Shield PLUS are features of the Connect EZ Turnkey Wireless LAN Bundles that provide security services certified by the Wireless Fidelity Alliance. These security features apply industry-standard methods for the encryption of data being sent across the wireless network (encryption) and for login authorization (authentication).

EZ Suite Shield provides Wi-Fi Protected Access (WPA)

  • Temporal Key Integrity Protocol (TKIP) keeps your encryption keys from being discovered
  • DoD Advanced Encryption Standard (AES) available with 802.1x hardware

EZ Suite Shield Plus provides user login authentication with 802.1x and RADIUS

  • A firewall appliance is added to the network infrastructure to protect against wireless attacks
  • Client machines can be uniquely authenticated through RADIUS with EAP
  • User's can be required to supply a userid and password through an access control gateway

EZ Suite Shield and EZ Suite Shield PLUS

EZ Suite Shield services provide Wi-Fi Protected Access (WPA) data encryption. This is the evolution of the early, flawed, Wired Equivalent Privacy (WEP) encryption that has been the source of many articles and discussions exposing the weakness of early Wi-Fi network security. Those problems have been solved with Wi-Fi Protected Access (WPA) and work being done by the Institute of Electrical and Electronics Engineers 802.11i working group and the implementation of the 802.1x authentication standards. The implementation of these new standards to assure security and privacy are what make up the Connect802 EZ Suite Shield security protection for each Connect EZ Turnkey Wireless LAN Bundle.

EZ Suite Shield PLUS expands on data encryption to provide advanced user authentication and firewall segregation for your wireless network. Fundamentally, this means that a Userid and Password can be required to access the Wi-Fi network. The IEEE 802.1x standards are used to exchange authentication information with a database of user names and passwords. This can also include computer addresses as part of the identification of who's authorized, and who's not. The database can be activated within the Connect EZ Turnkey Wireless LAN Bundle or it can be an existing authentication database on the wired Ethernet network using the Remote Access Dial-In User Service (RADIUS), a standard method for user authentication.The security provided through EZ Suite Shield PLUS is at the level required in the U.S. Federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) and required for the secure transmission of financial transactions.

Important Considerations For Your Suite Shield Capabilities

The Connect802 sales and engineering team will want to understand your requirements for data encryption and user authentication. The following encryption and authentication questions should be considered.

Do the Wi-Fi client devices (notebook computers, handheld scanners, surveillance cameras, etc). have any limitations on the type of data encryption they support? (WEP, WPA, WPA2)
Will encryption keys be provided to the users or is there an expectation that keys will be sent to mobile devices automatically from a central key server?
Will userids and passwords be created specifically for the wireless LAN or will user credentials be taken from an existing database (i.e. Microsoft Server with LDAP, Unix with Kerberos, etc).
Do you currently implement an in-house RADIUS server?
Will users be required to access the wireless LAN through a secure VPN (or other) tunneling protocol? If so, are they already doing this across the wired network infrastructure?