8. Wireless IDS/IPS
Until this point, the book has focused on the traditional idea of an Intrusion Detection System/Intrusion Prevention System (IDS/IPS). This typically involves performing an in-depth analysis of captured data frames, determining what constitutes a threat, and then parsing the traffic for any predefined threats. Although this concept works well in a traditional networked environment, the twenty-first century is redefining the reality of where data goes and how it gets there. This chapter focuses on the wireless perspective and examines the technology needed to analyze the airwaves for threats specifically associated with this communication medium.
Unless otherwise stated, this chapter’s contents apply to 802.11-based ...