New WIPS from Aruba

Aruba Networks, a global leader in user-centric networks and secure mobility solutions, today announced a new version of its RFprotect Wireless Intrusion Prevention System (WIPS) software that allows users to define their own attack-detection signatures and defend against previously unknown, undisclosed, or unpatched vulnerabilities (zero-day attacks). These user-defined signatures can be implemented almost immediately, enhancing security and giving users more control over their threat vulnerability. All other wireless intrusion prevention systems require the supplying vendor to provide updates, leaving customers vulnerable in the meantime when a new attack is developed.

In addition, Aruba customers will be able to make their user-defined signatures available to others by contributing them to the Wireless Vulnerabilities and Exploits (WVE) database at www.wve.org, a community vulnerabilities database. Aruba has long been an active participant in the WVE Project.

"Security is an unending, iterative process in which the best defense is built by rapidly integrating updates about real or potential attacks as quickly as possible," said Rajeev Shah, Aruba's wireless IDS product manager. "User-defined threat definitions are used successfully in other segments of the security market, and we're pleased to be the first to make it available for WIPS."

The new software represents the full integration of the RFprotect software that Aruba acquired from Network Chemistry in 2007. RFprotect software automatically detects network vulnerabilities and contains unauthorized clients and adhocs even as they roam. With its customizable security policies, RFprotect software delivers organization-specific security policy enforcement, reduces false positives, and generates reports to meet compliance requirements.

Originally acquired from Network Chemistry in 2007, RFprotect software automatically detects network vulnerabilities and contains unauthorized clients and adhocs even as they roam. Featuring customizable security policies, RFprotect software delivers organization-specific security policy enforcement, reduces false positives, and generates reports to meet compliance requirements. The new RFprotect software has been integrated into Aruba's secure mobility solutions to enhance Layer 1-2 security capabilities.

"It is important that interval between the detection of a security threat and its mitigation be as short as possible because of the vulnerability created by the gap," said Paul DeBeasi, senior analyst at Burton Group. "Collaboratively developing, testing, and disseminating security features, including user-defined signatures, can minimize the vulnerability more rapidly than relying on a single vendor for periodic updates. This method has been used effectively in areas such as virus detection, and is an innovative way to enhance WIPS security."

The new RFprotect software will be shipping early this summer, and will be introduced at Interop Las Vegas, April 29 May 1, booth 1262, at the Mandalay Bay Convention Center.