Powerful Weapon for Anti Internal Threats by BYOD

TAIPEI, Taiwan - Nov. 25, 2014 - PRLog -- Wireless network is the major link of BYOD environment in most enterprises. Employees can access corporate IT systems, especially of email and message service, with their mobile devices, such as tablet, mobile phone…etc., through private wireless network conveniently. Though most of mobile devices come with 3G or LTE connection, private wireless network is still the most prioritized choice in corporate office environment.

Security risk of wireless network in corporate IT environment has always been concerned seriously. Lots of wireless network protection solutions can be found in corporate offices, such as hidden BSSD of AP, MAC address recognition of target devices, roaming by mesh network deployment scheme and IAS logon control…etc. Those off the shelf solutions provide strict control mechanism on the access of private corporate in order to protect the most precious corporate digital assets.

On the other hand, the above security mechanism is only designed for those accidental accesses by unknown mobile devices. For those malice hackers with legal access right either by the way of ID stolen or password cracking, corporate IT can also trace all abnormal IT access activities immediately on different systems and devices by SIEM/SOC system in order to stop these harmful acts.

For practical purpose of anti-hacking policy and IT security governance, the above ways are pretty good for IT security against outside intruders. What if the hacker is from inside, say, disgruntled or malice employee? Both wireless access gateway control and SIEM solution cannot tell how serious the impact is done by those inside threats.

“We fully understand the pains of being hacked by employees inside office,” said Casper Kan Chang, CEO of Decision Group, “and we provide effective wireless network forensic solution by deep packet inspection (DPI) technology to help corporate solve BYOD security issues.”

In order to protect corporate IT security through wireless network, Decision Group Network Investigation Toolkit (NIT) provides superb functionality to detect identity of users, block unauthorized users, capture all traffic of target users and present it with reconstructed content to CISO or CIO on the designated wireless network. Target users can be those of corporate employees or outside intruders. In the meanwhile, NIT can be also used to intercept traffic at the specific point of corporate wired network as a tactic network forensic device to collect and reconstruct data into original content for IT security governance. In other words, NIT can work on both wired and wireless networks in corporate IT environment for fulfillment of IT security management and requirement.

The interception on wireless network is actually a big challenge for a system like NIT. The physical nature of wireless transmission is through the RF spectrum of 2.4GHz or 5GHz, and it is easily interfered by background white noisy or high voltage power device. Though intercepting good quality of RF has something to do with distance between interceptor and target device, how to guaranty the high quality gain of RF is a big challenge for a wireless interceptor. Remember that: the higher percentage of RF wave NIT can get, the better quality of reconstructed content it can present. Some enhancement of wireless RF receptor can be integrated inside NIT system for better quality, such as with above 8dB wireless antenna and by multiple antenna integration. By this way, the percentage of RF capture rate can reach the level of 92% above.

Another requirement in corporate is the detection of foreign wireless AP. In some instances, few disgruntled employees tried to send corporate confidential information outside through the specific foreign wireless AP, and especially some mobile devices can be configured as mobile AP system. How to break into such a suspicious data leakage wireless link is significant for corporate IM or CISO. Decision Group also provides WPA cracking system for this requirement.

WPA cracking system is a special system with strong computing power to crack the complicated key structure of WPA-PSK or WPA-802.1X. In most cases, WPA cracking system usually comes with multiple GPUs to fulfill computing power needed in the key cracking process. For WPA-PSK, the total elapse time for key cracking is generally 20 minutes if it is among common words. Once the WPA is available, NIT can use it for wireless interception against foreign unknown AP by corporate IM or CISO to prevent internal data leakage.

Decision Group has launched Network Investigation Toolkit (NIT) since 2010, and it has been adopted by more than few thousands of customers around the world. For the past 5 years, along with advance of wireless network technology, Decision Group NIT was also upgraded for those existing clients year by year. Now Decision Group provides a new version of NIT 2.0 for customers. In this new version, Decision Group enhances the capability of wireless RF and HTTPS interception as well as more friendly user interface for operation and administration. The target intercepted online service list has been expanded from common web services into popular mobile APPs, whereas more statistic reports on online traffic situation are available for user reference during operation. The most important improvement is the enhancement of system performance by a totally brand new core protocol analysis engine.

For new version of NIT 2.0, Decision Group has tested it in early adoption customer site for more than 6 months. Now it is available with great maturity. If you are interested in this new product or you want to upgrade your current NIT system to the new version, we welcome for your request. Please contact with decision@decision.com.tw or you may check out the URL: http://www.edecision4u.com. We will answer for your request upon receiving it.

About Decision Group, Inc.

Decision Group is a company focused on worldwide renowned DPI application of E-Detective.  Decision Group, established in Taipei, Taiwan since 1986, is one of the leaders in manufacturing of PC-Based Multi-Port RS232/422/425 Serial Cards, Data Acquisition & Measurement Products and Industrial Automation and Control Systems.

Decision Group, in the year 2000, started a new line involved in designing and developing equipment and software for Internet Content Monitoring and Network Forensics Analysis Solutions. Now, Decision Group has positioned itself as a total-solution provider with a full-spectrum of products in its portfolio for network forensic and lawful interception.

More Information and Contact by Email: decision@decision.com.tw

URL: www.edecision4u.com (Global), www.internet-recordor.com.tw (Taiwan), www.god-eyes.cn (China), www.decisionjapan.com (Japan) ,

www.e-detective.de (Germany), www.edecision4u.fr (France), www.edecision4u.es (Spain and Latin America)