...Presented to the Information Technology College Faculty of Western Governors University in Partial Fulfillment of the Requirements for the Degree Master of Science in Information Security Assurance January 9, 2014 1 SECURING WI-FI ROGUE ACESS WITHIN AN ENTERPRISE SETTING 2 A1 - Abstract Since 1999 wireless devices have become a necessity in enterprises. While increasing convenience, connectivity, and productivity, they also pose an unprecedented threat to network security guarding, which has literally taken to the airwaves. This paper will deal with vulnerabilities and risks regarding access points (APs) in a wireless network (WLAN) connecting to a wired local area network (LAN) in enterprises. Data for this paper will come from published academic papers, industry publications including white papers and surveys, and industry specialists. It will also include definitions of terms, policy and procedures that affect access points, and current practices regarding rogue APs. A case study will be presented for a fictional enterprise with multiple locations that has standard procedures, policies, and protocols in place, but recent events have questioned their ability to control access points with the discovery of rogue devices hidden in several office locations. Industry warnings about access points span the past thirteen years, and still new articles appear saying similar warnings, with only the solutions evolving with the technology. Suggested solutions will...
Words: 18577 - Pages: 75
...Aruba Migration Guide 802.11AC MIGRATION GUIDE 802.11ac Aruba Migration Guide Table of Contents Introduction 802.11AC basics Why 802.11ac? 802.11ac technology overview Backward compatibility RF spectrum Multistation MAC throughput > 1 Gbps 256 QAM Wider channels More spatial streams Downlink multi-user MIMO Pros of 802.11ac Cons of 802.11ac Strategy and planning for 802.11ac migration Site planning basics Planning process Minimum requirements and actions to implement 802.11ac Aruba recommendations for 802.11ac migration General Capacity RF planning Installation Wireless RF coverage considerations and questionnaire Summary 3 3 3 4 4 4 5 5 5 5 6 6 6 6 6 6 7 8 8 8 8 8 9 10 Aruba Networks, Inc. 2 802.11ac Aruba Migration Guide Introduction Wi-Fi has become such an amazingly successful technology because it has continuously advanced while remaining backwards compatible. The current state-of-the-art Wi-Fi is known as Wi-Fi CERTIFIED n or 802.11n. 802.11n has become popular because it improves performance. As 802.11n has become a standard interface on PCs, tablets and smartphones, the applications used by these devices have continued to progress. Mobile technology has encountered the next frontier – video. Whether delivering YouTube to smartphones or moving HDTV signals around the office or home, video has become a significant driver of network traffic, chiefly because it requires one or two orders of magnitude more bandwidth than other IP services. Now...
Words: 3787 - Pages: 16
...Individual Case Write-Up: Athlete’s Performance Athletes’ Performance developed an all-inclusive training regimen designed to help athletes prepare, fuel, and train. Its strategy position focused on differentiation. This particular strategy was exploited by providing a specialized service that was different than any other performance training facility around. They created a premium brand image by customizing a fitness plan for elite athletes and professionals alike that would fit everyone’s needs. Also, AP provided convenient access through the Internet, traveling to the athlete if needed and using the sliding fee type scale to give access to amateur athletes. Essentially, AP provided the best technology combined with a team of experts to help athletes achieve higher levels of performance on a more consistent basis that also complimented its team programs. The following are 3 key resources and capabilities help AP to differentiate its products and services. |Key Resources |Key Capabilities | |1. Experts at the forefront of their subject areas |1. Combining various resources into focused philosophies and | | |methodologies | |2. World-class training facilities with the latest technology |2...
Words: 693 - Pages: 3
...redundant purchasing and high inventory holding costs 3. Siti Aminah (CFO) has no experience in system and technology 4. Internal control weaknesses: Purchasing system Current purchasing system contributed to redundant purchasing and high inventory holding costs and caused increases in costs of goods sold and inventories disproportionate with growth of sales a) The purchasing clerk, Cik Anne should not have received the invoice and DO. - In this case show that Cik Anne received the DO and SRN FROM En. Min and invoices from supplier, she batched, checked and coded the invoices. b) There is no copy of PO being sent to vendor, Receiving Department and AP. - In this case, En, Razi get the approveal from En.Ghani, a Managing Director, then he passes the PO to the Purchasing clerk, Cik Anne for sorting and disputing. En. Razi not mention any copy of PO being sent to vendor, Recieving Department and AP. c) The Materials Resource Planning, Cik Lim should not update AP. The liability should be recorded by another clerk from Finance Department. - In this case, all matters regarding finance will be done by En. Razi. In order to have a good flowchart of purchasing process, the company should have a good segregation of duties and not rely on En. Razi. d) The Finance Clerk, Encik Faris should not prepare cheque. - Payments to suppliers can only be authorized by AP. Voucher should be prepared by the one who updated account payable. This is to ensure the payment of bills...
Words: 343 - Pages: 2
...challenge Chapter findings The report has defined 'whole of government' in the Australian Public Service (APS) as: Whole of government denotes public service agencies working across portfolio boundaries to achieve a shared goal and an integrated government response to particular issues. Approaches can be formal and informal. They can focus on policy development, program management and service delivery. APS agencies should review their work in light of this definition to assess the potential impact of this report on their work. There are many imperatives which make being successful at whole of government work increasingly important. These include pressures on the APS to offer sophisticated whole of government policy advice which comprehends a range of stakeholders' views, and to respond to complex policy challenges such as environmental or rural issues. There are pressures to join up program management, including security threats and intractable social issues such as drug dependence. There are rising community expectations for easier access to government by integrating service delivery. Agencies should review the impact of these imperatives on their work, including taking a long-term view of possible scenarios. Whole of government approaches to Australian government work are a relative strength for Australia and are not new. The increasing pressures on the APS demands that its history in whole of government work is understood to ensure it is not necessary to 'reinvent the...
Words: 6250 - Pages: 25
...demand for Low Cost Carrier (LCC) is expected to expand rapidly attracting more players to join the market thus increasing the degree of rivalry within the industry. In responding to this condition, it is imperative for AirAsia to continuously identify new sources of cost advantage so that it can provide the lowest possible price to the price sensitive customer and improve its market position. In this project, Advanced Planning and Scheduling (APS) system is recommended as the new source of AirAsia’s cost advantages. Using Venkatraman and Henderson’s model APS fits smoothly to the Technology Transformation Perspective where business strategy acts as a driver. The functionalities provided by APS system to improve AirAsia’s performance include event management technology, supplier portals, inventory planning, demand forecasting, maintenance management, and route profitability analysis. As a result of implementing APS system, AirAsia can obtain both strategic and operational benefits. AirAsia is strongly recommended to outsource the development of APS system. As project management plays critical role in ensuring successful implementation, it is suggested that AirAsia follows the recommendation provided in terms of planning, structure, practices, and postimplementation strategy. 1 306-669 Strategic Enterprise Systems Group Project Table of Content Executive Summary...
Words: 7166 - Pages: 29
...demand for Low Cost Carrier (LCC) is expected to expand rapidly attracting more players to join the market thus increasing the degree of rivalry within the industry. In responding to this condition, it is imperative for AirAsia to continuously identify new sources of cost advantage so that it can provide the lowest possible price to the price sensitive customer and improve its market position. In this project, Advanced Planning and Scheduling (APS) system is recommended as the new source of AirAsia’s cost advantages. Using Venkatraman and Henderson’s model APS fits smoothly to the Technology Transformation Perspective where business strategy acts as a driver. The functionalities provided by APS system to improve AirAsia’s performance include event management technology, supplier portals, inventory planning, demand forecasting, maintenance management, and route profitability analysis. As a result of implementing APS system, AirAsia can obtain both strategic and operational benefits. AirAsia is strongly recommended to outsource the development of APS system. As project management plays critical role in ensuring successful implementation, it is suggested that AirAsia follows the recommendation provided in terms of planning, structure, practices, and postimplementation strategy. 1 306-669 Strategic Enterprise Systems Group Project Table of Content Executive Summary...
Words: 7114 - Pages: 29
...demand for Low Cost Carrier (LCC) is expected to expand rapidly attracting more players to join the market thus increasing the degree of rivalry within the industry. In responding to this condition, it is imperative for AirAsia to continuously identify new sources of cost advantage so that it can provide the lowest possible price to the price sensitive customer and improve its market position. In this project, Advanced Planning and Scheduling (APS) system is recommended as the new source of AirAsia’s cost advantages. Using Venkatraman and Henderson’s model APS fits smoothly to the Technology Transformation Perspective where business strategy acts as a driver. The functionalities provided by APS system to improve AirAsia’s performance include event management technology, supplier portals, inventory planning, demand forecasting, maintenance management, and route profitability analysis. As a result of implementing APS system, AirAsia can obtain both strategic and operational benefits. AirAsia is strongly recommended to outsource the development of APS system. As project management plays critical role in ensuring successful implementation, it is suggested that AirAsia follows the recommendation provided in terms of planning, structure, practices, and postimplementation strategy. 1 306-669 Strategic Enterprise Systems Group Project Table of Content Executive Summary...
Words: 7114 - Pages: 29
...Various techniques that employ GPS signals such as A-GPS and GPS transmitters [4, 7] have been introduced with the hope to provide a solution for indoor positioning detection. We proposed the implementation of trilateration technique to determine the position of users in indoor areas based on Wi-Fi signal strengths from access points (AP) within the indoor vicinity. In this paper, percentage of signal strengths obtained from Wi-Fi analyzer in a smartphone were converted into distance between users and each AP. A user’s indoor position could then be determined using a formula proposed based on trilateration technique. KEYWORDS Indoor Position detection, WI-Fi, Trilateration Technique. 1 INTRODUCTION Global Positioning System (GPS) is a technology developed by United States of Defense (DoD) that has been used for military purposed. It is also the main technology that plays an important role in satellite navigation. The main purpose of GPS is to determine the position or coordinate of an object based on location, time and speed [2, 6] which provide Location Based Services (LBS) [5, 6]. Nowadays, the technology has been used widely in outdoor environment such as in navigation and coordinate measurements. GPS depends on satellites to communicate using radio signals. Common example of GPS receivers such as GARMIN, NAVMAN and TOM TOM are capable to determine the accuracy of a position in the range of 10 meter. Optimum signal performance can...
Words: 2199 - Pages: 9
...Special Publication 800-48 Wireless Network Security Tom Karygiannis Les Owens 802.11, Bluetooth and Handheld Devices NIST Special Publication 800-48 Wireless Network Security 802.11, Bluetooth and Handheld Devices Recommendations of the National Institute of Standards and Technology Tom Karygiannis and Les Owens C O M P U T E R S E C U R I T Y Computer Security Division Information Technology Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930 November 2002 U.S. Department of Commerce Donald L. Evans, Secretary Technology Administration Phillip J. Bond, Under Secretary for Technology National Institute of Standards and Technology Arden L. Bement, Jr., Director W IRELESS NETWORK SECURITY Note to Readers This document is a publication of the National Institute of Standards and Technology (NIST) and is not subject to U.S. copyright. Certain commercial products are described in this document as examples only. Inclusion or exclusion of any product does not imply endorsement or non-endorsement by NIST or any agency of the U.S. Government. Inclusion of a product name does not imply that the product is the best or only product suitable for the specified purpose. Acknowledgments The authors wish to express their sincere thanks to numerous members of government, industry, and academia who have commented on this document. First, the authors wish to express their thanks to the staff at Booz Allen Hamilton...
Words: 52755 - Pages: 212
...four keys strategic areas. In the next periods we conducted six SWOT analyses. Our analyses help us to connects objectives and strategies to actionable tactics carried out by employees. Results from the first one are presented in Attachment number one. Our main strengths are good reputation, strong focus that is being put on technology, innovation and quality, low production cost and strong presence in Europe as well as developing in AP and NAFTA. Our company is an export oriented one. Although it can allow us to grow faster and generate higher income, it might cause some problems, for example extra hiring costs and export permits. The high-tech industry is expanding rapidly, which is a great opportunity for Xeltronics to expand itself in new markets and capture more market share. We believe that our company has a lot of potential and is would be able to invest more in Asia-Pacific or/and NAFTA countries. The main weakness of our company is exposure to exchange rate changes. Another option would be joint ventures, strategic alliances and outsourcing. That would allow our company to lower the risks and access the greater resources (specialized staff and technology). Furthermore, new...
Words: 2864 - Pages: 12
...WHITE PAPER 1 7 WHITE PAPER 2 Image Signal Processor (ISP) of 8M pixel 30fps with addon post processing units, such as 3-Dimensional Noise Reduction (3DNR), Vdeo Dgital Image Stabilization (VDIS), and Optical Distortion Compensation (ODC) integrated. Its ISP pipeline supports zero-shutter lag. BOM savings by integrating USB Host/Dev3.0, HSIC with PHY transceivers, and eight channels of I2C supporting a variety of sensors. Since 2009, the mobile industry has experienced an unprecedented number of new trends. The current trend sees gadgets providing low-power mobility without compromising performance. When users realized the advantages of browsing the web, watching HD video, and playing 3D games on a mobile device, they demanded displays with higher resolution and better multimedia performance. Designed to keep up with these mega trends, Exynos 5 Dual supports a WQXGA solution. Exynos 5 Dual key features: System-on-a-chip (SoC) based on the 32-bit RISC processor for tablet PCs. Designed with the 32nm lowpower process, Exynos 5 Dual provides performance features such as dual core CPU, highest memory bandwidth, WQXGA display, 1080p 60fps video hardware, 3D graphics hardware, Image Signal Processor, and high-speed interfaces such as USB 3.0 and SATA3. Cortex-A15 dual core (with each core running at 1.7GHz speed), whose DMIPS is 40% higher than Cortex-A9 core. 12.8GB/s memory bandwidth with 2-port 800MHz LPDDR3 for heavy traffic operations such as 1080p video...
Words: 2247 - Pages: 9
...Buy and Sell notes on BreakStudy.com Find more on www.BreakStudy.com AP/ADMS 2511 Midterm Examination October 19, 2013 -- ANSWER KEY -- Question 1 Page 1 Question 1 (18 marks – 60 minutes) Napoleon is a company with over 400 employees in Barrie, Ontario and it is one of North America's largest privately owned manufacturers of high quality wood and gas fireplaces, gourmet gas and charcoal grills. Napoleon's commitment to producing quality products combined with honest, reliable service has provided a successful framework for continued rapid growth of the company since its beginnings as a small steel fabrication business in 1976. Napoleon works with its customers to design and implement innovative features and holds numerous patents for advanced state-of-the-art gas fireplace barbecue grill technology such as Infra-red grilling. The company's website provides customers with product information, help in finding distributors, and assistance in assembling its products. The website also provides secured product ordering and account management features for dealers of its products. Napoleon has integrated IT into both its long-term planning and its daily operations. This stems from the view of the executive team that IT is key to their business, both when providing services to customers and in internal functions. A) Napoleon’s IT department has not previously done any IT strategic plan. The CIO would like to know more about what steps to follow to develop an...
Words: 1520 - Pages: 7
...2012 with Dr Paul Redmond Discussions on student employability are now more ‘en vogue’ than ever before. GMT explores the issues and challenges brought on by fast changing higher education and technology landscapes with an exclusive interview: AGCAS’s new President Elect, and one of the best known experts and public figures in the field, Dr Paul Redmond, talks to Aphrodite Papadatou about graduate employability in the year 2012 – and beyond.1 AP: The recent higher education white paper reinforces governmental concern for employability. How will this affect the provision of undergraduate degrees? Will some disciplines where employment rates are low become ‘extinct’? PR: I think the sector is going through a phase where it is asking itself big questions like ‘what is higher education for?’ and often answers to these are shaped by instrumentalist concerns – such as all university courses should contribute to the economy. In some ways, this is fairly recent idea, but it has now become so mainstream to be almost ubiquitous. This strikes me as being a pity. Not only does it challenge the idea of the university, even economically, it doesn’t make sense. We need the artistic skills of the arts and humanities to innovate and produce future technology – think for example of the iPad: technology meets art and design. The only reason why early Apple computers offered different fonts was because Steve Jobs, prior to being thrown out of university, had been on a calligraphy course. To be ‘employable’...
Words: 2614 - Pages: 11
...Page 1 June 4, 2014 ABC Company Proposed revision of Information Security Policy Anthony Ronning: Information Security Manager OBJECTIVE: Due to the recent breach of our electronic health record (EHR) systems, it is necessary that policies pertaining to access and control mechanisms of health records be reviewed and/or modified to mitigate future incidents SPECIFIC GOALS: 1.) Implement a standard based on Attribute Based Access Control (ABAC) to ensure that electronic health records (EHR) are protected from unauthorized entities 2.) Implement a standard for the use of remote access methods to information systems 3.) Implement a standard that ensures that access to electronic health records (EHR) is audited and backed up without changes or over writing INFORMATION SECURITY POLICY GOALS: * Confidentiality = data or information is not made available or disclosed to unauthorized persons or processes * Unauthorized access = the INABILITY of unauthorized persons to read, write, modify, or communicate data/information or otherwise use any system resource * Integrity = data or information has not been altered or destroyed in an unauthorized manner * Availability = data or information is made accessible and usable upon demand by authorized users * Legislative and Regulatory Requirements = policies comply with Federal and HIPAA regulatory standards * Business continuity plan integration = policy revisions fall within the business continuity...
Words: 2279 - Pages: 10
